Modrá obrazovka s dumping physical memory to disk

Zpráva

trbi · #1 Příspěvek od **trbi** » 23 pro 2013 22:48

Dobrý deň, prosím o kontrolu logu, môj notebook pri hraní náročnejších hier keď sa značne zahreje prepne do modrej obrazovky kde je okrem iného napísane "dumping physical memory to disk" a potom sa reštartuje.

Prosím o pomoc, ďakujem

Logfile of random's system information tool 1.09 (written by random/random)
Run by Mato at 2013-12-23 22:41:15
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 27 GB (26%) free of 102 GB
Total RAM: 8089 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:41:29, on 23. 12. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Program Files (x86)\MSI\KLM\KLM.exe
C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe
C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files (x86)\Java\jre7\bin\javaw.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
C:\Program Files (x86)\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
C:\Program Files\trend micro\Mato.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE.dll
O2 - BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Mato\AppData\Roaming\Complitly\Complitly.dll
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O3 - Toolbar: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [KLM] C:\Program Files (x86)\MSI\KLM\KLM.exe
O4 - HKLM\..\Run: [VGAOCAP] C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe
O4 - HKLM\..\Run: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\windows\UpdReg.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN16F4C02005PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [ShowBatteryBar] "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Intel(R) Turbo Boost Technology Monitor 2.5.lnk = C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
O4 - Startup: PdaNet Desktop.lnk = C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe
O4 - Global Startup: Qualcomm Atheros Killer Network Manager.lnk = C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit (mi-raysat_3dsmax2012_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\S-Bar\MSIService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: MSI Foundation Service - MSI - C:\Program Files (x86)\MSI\MSI HOUSE\MSIFoundationService.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Qualcomm Atheros Killer Service - Unknown owner - C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Splashtop® Remote Service (SplashtopRemoteService) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Splashtop Software Updater Service (SSUService) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.5 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16989 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
winlogon.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe"
"C:\windows\system32\nvvsvc.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
taskeng.exe {59A68CB0-87DD-4D73-82A8-16EFB63C5DEA}
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
uiWatchDog.exe 1980
\??\C:\windows\system32\conhost.exe "-1343134258559789687-211330760720092713519380437503102485911615237529118013614
coreFrameworkHost.exe 1980 1
"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe"
\??\C:\windows\system32\conhost.exe "4508288881675508251-288969562-734219710207643491-1735553136-1561153775-2003556619
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe"
"C:\Program Files (x86)\S-Bar\MSIService.exe"
"C:\Program Files (x86)\MSI\MSI HOUSE\MSIFoundationService.exe"
"taskhost.exe"
taskeng.exe {AE1EEC81-6FF8-4B8F-A2D4-5CBF02A0870C}
"C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe"
"C:\windows\system32\Dwm.exe"
"C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRService.exe"
"C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe"
C:\windows\Explorer.EXE
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
WLIDSvcM.exe 3316
"C:\windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
"C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe"
-h
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Windows\System32\rundll32.exe" C:\windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files\ACD Systems\ACDSee Pro\7.0\acdIDInTouch2.exe"
"C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe"
"C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN16F4C02005PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
"C:\Program Files\Rainlendar2\Rainlendar2.exe"
"C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe" -minimized
"C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe"
"C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
"C:\Program Files (x86)\MSI\KLM\KLM.exe"
"C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe"
"C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" /r
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
"C:\Program Files\Intel\TurboBoost\TurboBoost.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\servicing\TrustedInstaller.exe
"SRFeature.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -Xmx512m -Dsun.java2d.d3d=false -jar "C:\Program Files (x86)\JDownloader\JDownloader.jar"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=7556.bec1100.414558204 "C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 7556 "\\.\pipe\gecko-crash-server-pipe.7556" plugin
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\windows\system32\conhost.exe "921649111855226338-941076445-935911389951542338-275023107730164762245518917
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=7556.178ac900.1607207633 "C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 7556 "\\.\pipe\gecko-crash-server-pipe.7556" plugin
"C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe" --proxy-stub-channel=Flash9096.5E2FB990.7859 --host-broker-channel=Flash9096.5E2FB990.16871 --host-pid=9096 --host-npapi-version=27 --plugin-path="C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll"
"C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe" --channel=8232.0034F3B4.1426336153 --proxy-stub-channel=Flash9096.5E2FB990.7859 --plugin-path="C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll" --host-npapi-version=27 --type=renderer
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
C:\windows\system32\sppsvc.exe
"DataProxy.exe"
\??\C:\windows\system32\conhost.exe "1024179171203285033-124767377-1026388815-11098393081862542079766322766984921775
C:\windows\System32\svchost.exe -k WerSvcGroup
wmiadap.exe /F /T /R
"C:\Program Files (x86)\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe" "D:\Download\Modern.Family.S05E07.HDTV.x264-2HD.mp4"
"D:\Download\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\AutoKMS.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Mato\AppData\Roaming\Mozilla\Firefox\Profiles\750m12nv.default

prefs.js - "browser.startup.homepage" - "http://www.google.sk/"
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=green ... =198484&p="

"tmbepff@trendmicro.com"=C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.3.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@TrendMicro.com/FFExtension]
"Description"=TrendMicro Toolbar Rating Plugin
"Path"=C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Users\Mato\AppData\Roaming\Mozilla\Firefox\Profiles\750m12nv.default\searchplugins\
yahoo.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\Mato\AppData\Roaming\Complitly\64\Complitly64.dll [2011-10-16 167416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg.dll [2013-07-10 449048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-08 6669000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe64.dll [2013-08-15 1263640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
IObit Apps Toolbar - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE.dll [2013-12-13 1398080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\Mato\AppData\Roaming\Complitly\Complitly.dll [2011-10-16 139768]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll [2013-07-10 332824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18}]
TSToolbarBHO - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-09-26 510736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2013-03-08 4171464]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe32.dll [2013-08-15 1315352]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{03EB0E9C-7A91-4381-A220-9B52B641CDB1} - IObit Apps Toolbar - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE64.dll [2013-12-13 1996608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CCAC5586-44D7-4c43-B64A-F042461A97D2} - Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-09-26 510736]
{03EB0E9C-7A91-4381-A220-9B52B641CDB1} - IObit Apps Toolbar - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE.dll [2013-12-13 1398080]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-09-16 2328360]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-12-20 11406608]
"THXCfg64"=C:\windows\system32\THXCfg64.dll [2010-09-14 25600]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-01-10 12445288]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-12-14 172144]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-12-14 399984]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-12-14 441968]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-11-08 1028384]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"ShadowPlay"=C:\windows\system32\nvspcap64.dll [2013-12-10 1100248]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2013-07-23 221584]
"ACPW07EN"=C:\Program Files\ACD Systems\ACDSee Pro\7.0\acdIDInTouch2.exe [2013-09-25 1739080]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2013-12-10 2279712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"Pando Media Booster"=C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [2013-08-18 4287536]
"HP Deskjet 3050A J611 series (NET)"=C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2011-03-30 2547048]
"AdobeBridge"= []
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2011-08-12 3820032]
"ShowBatteryBar"=C:\Program Files\BatteryBar\ShowBatteryBar.exe [2013-04-11 89600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
[]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-11-29 284440]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-04 291608]
"Super-Charger"=C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [2012-01-03 502288]
"KLM"=C:\Program Files (x86)\MSI\KLM\KLM.exe [2011-12-19 1522376]
"VGAOCAP"=C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe [2012-01-31 88576]
"THX Audio Control Panel"=C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe [2011-08-30 1517056]
"UpdReg"=C:\windows\UpdReg.EXE [2000-05-11 90112]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"YouCam Service"=C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2013-03-05 263128]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
""= []
"SearchSettings"=C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2013-12-13 1383232]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Qualcomm Atheros Killer Network Manager.lnk - C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe

C:\Users\Mato\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Intel(R) Turbo Boost Technology Monitor 2.5.lnk - C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
PdaNet Desktop.lnk - C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2012-12-14 442880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-08 6669000]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2013-03-08 4171464]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutorun"=67108863
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2013-12-23 22:41:15 ----D---- C:\rsit
2013-12-23 21:02:18 ----D---- C:\temp
2013-12-23 20:42:01 ----D---- C:\Program Files\CCleaner
2013-12-18 13:41:27 ----A---- C:\windows\SYSWOW64\nvaudcap32v.dll
2013-12-18 13:41:27 ----A---- C:\windows\system32\drivers\nvvad64v.sys
2013-12-17 21:57:54 ----D---- C:\windows\Minidump
2013-12-17 17:17:04 ----D---- C:\Program Files (x86)\IObit Apps Toolbar
2013-12-17 17:17:04 ----D---- C:\Program Files (x86)\Application Updater
2013-12-17 17:17:03 ----SHD---- C:\Config.Msi
2013-12-12 12:12:11 ----D---- C:\Program Files (x86)\Wondershare
2013-12-12 10:11:53 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2013-12-12 10:11:53 ----A---- C:\windows\SYSWOW64\wmp.dll
2013-12-12 10:11:53 ----A---- C:\windows\system32\wmploc.DLL
2013-12-12 10:11:52 ----A---- C:\windows\system32\wmp.dll
2013-12-12 10:11:07 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2013-12-12 10:11:07 ----A---- C:\windows\SYSWOW64\ieui.dll
2013-12-12 10:11:07 ----A---- C:\windows\system32\jsproxy.dll
2013-12-12 10:11:07 ----A---- C:\windows\system32\ieUnatt.exe
2013-12-12 10:11:07 ----A---- C:\windows\system32\ieui.dll
2013-12-12 10:11:07 ----A---- C:\windows\system32\iernonce.dll
2013-12-12 10:11:07 ----A---- C:\windows\system32\ieetwcollectorres.dll
2013-12-12 10:11:07 ----A---- C:\windows\system32\ie4uinit.exe
2013-12-12 10:11:06 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2013-12-12 10:11:06 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2013-12-12 10:11:06 ----A---- C:\windows\system32\mshtml.dll
2013-12-12 10:11:06 ----A---- C:\windows\system32\jscript9diag.dll
2013-12-12 10:11:06 ----A---- C:\windows\system32\iesetup.dll
2013-12-12 10:11:06 ----A---- C:\windows\system32\iertutil.dll
2013-12-12 10:11:06 ----A---- C:\windows\system32\ieetwproxystub.dll
2013-12-12 10:11:06 ----A---- C:\windows\system32\ieetwcollector.exe
2013-12-12 10:11:06 ----A---- C:\windows\system32\ieapfltr.dll
2013-12-12 10:11:05 ----A---- C:\windows\SYSWOW64\wininet.dll
2013-12-12 10:11:05 ----A---- C:\windows\SYSWOW64\urlmon.dll
2013-12-12 10:11:05 ----A---- C:\windows\SYSWOW64\iertutil.dll
2013-12-12 10:11:05 ----A---- C:\windows\system32\wininet.dll
2013-12-12 10:11:05 ----A---- C:\windows\system32\urlmon.dll
2013-12-12 10:11:05 ----A---- C:\windows\system32\ieframe.dll
2013-12-12 10:11:04 ----A---- C:\windows\SYSWOW64\mshtml.dll
2013-12-12 10:11:04 ----A---- C:\windows\SYSWOW64\jscript9.dll
2013-12-12 10:11:04 ----A---- C:\windows\SYSWOW64\ieframe.dll
2013-12-12 10:11:03 ----A---- C:\windows\system32\jscript9.dll
2013-12-11 08:05:05 ----A---- C:\windows\SYSWOW64\WMPhoto.dll
2013-12-11 08:05:05 ----A---- C:\windows\system32\WMPhoto.dll
2013-12-11 08:05:04 ----A---- C:\windows\SYSWOW64\msieftp.dll
2013-12-11 08:05:04 ----A---- C:\windows\SYSWOW64\imagehlp.dll
2013-12-11 08:05:04 ----A---- C:\windows\system32\win32k.sys
2013-12-11 08:05:04 ----A---- C:\windows\system32\msieftp.dll
2013-12-11 08:05:04 ----A---- C:\windows\system32\imagehlp.dll
2013-12-11 08:05:02 ----A---- C:\windows\SYSWOW64\tzres.dll
2013-12-11 08:05:02 ----A---- C:\windows\system32\tzres.dll
2013-12-11 08:05:00 ----A---- C:\windows\SYSWOW64\wscript.exe
2013-12-11 08:05:00 ----A---- C:\windows\SYSWOW64\scrrun.dll
2013-12-11 08:05:00 ----A---- C:\windows\SYSWOW64\cscript.exe
2013-12-11 08:05:00 ----A---- C:\windows\system32\wscript.exe
2013-12-11 08:05:00 ----A---- C:\windows\system32\scrrun.dll
2013-12-11 08:05:00 ----A---- C:\windows\system32\drivers\portcls.sys
2013-12-11 08:05:00 ----A---- C:\windows\system32\drivers\drmk.sys
2013-12-11 08:05:00 ----A---- C:\windows\system32\cscript.exe
2013-12-10 22:17:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-12-09 08:20:27 ----D---- C:\ProgramData\Electronic Arts
2013-12-08 11:13:24 ----D---- C:\Program Files\Common Files\ACD Systems
2013-12-08 11:13:07 ----HD---- C:\TMRescueDisk
2013-12-08 11:10:03 ----A---- C:\windows\RegBootClean64.exe
2013-12-08 11:08:05 ----N---- C:\windows\system32\drivers\tmnciesc.sys
2013-12-08 11:08:05 ----N---- C:\windows\system32\drivers\tmeevw.sys
2013-12-08 11:08:05 ----A---- C:\windows\system32\drivers\tmtdi.sys
2013-12-08 11:08:04 ----A---- C:\windows\system32\drivers\tmevtmgr.sys
2013-12-08 11:08:04 ----A---- C:\windows\system32\drivers\TMEBC64.sys
2013-12-08 11:08:04 ----A---- C:\windows\system32\drivers\tmcomm.sys
2013-12-08 11:08:04 ----A---- C:\windows\system32\drivers\tmactmon.sys
2013-12-08 11:07:53 ----A---- C:\windows\system32\SupportTool.exe.bat
2013-12-08 11:06:44 ----D---- C:\Program Files\Trend Micro
2013-12-04 22:23:03 ----D---- C:\windows\Migration
2013-11-27 07:31:31 ----A---- C:\windows\system32\IEUDINIT.EXE
2013-11-27 07:29:37 ----A---- C:\windows\SYSWOW64\elshyph.dll
2013-11-27 07:29:37 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\wextract.exe
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\webcheck.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\vbscript.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\url.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\SetIEInstalledDate.exe
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\RegisterIEPKEYs.exe
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\pngfilt.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\occache.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\msrating.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\msls31.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\mshtmler.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\mshta.exe
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\msfeedssync.exe
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\msfeedsbs.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\licmgr10.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\jsIntl.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\jscript.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\inseng.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\imgutil.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\iexpress.exe
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\iesysprep.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\iesetup.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\iernonce.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\iepeers.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\ieapfltr.dat
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\IEAdvpack.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\icardie.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2013-11-27 07:29:36 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2013-11-27 07:29:36 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2013-11-27 07:29:36 ----A---- C:\windows\system32\msrating.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\msls31.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\mshtmler.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\msfeedssync.exe
2013-11-27 07:29:36 ----A---- C:\windows\system32\msfeedsbs.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\jsIntl.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\iesysprep.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\IEAdvpack.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\elshyph.dll
2013-11-27 07:29:36 ----A---- C:\windows\system32\dxtrans.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\wextract.exe
2013-11-27 07:29:35 ----A---- C:\windows\system32\webcheck.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\vbscript.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\url.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\pngfilt.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\occache.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\mshtmlmedia.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\mshtmled.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\MshtmlDac.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\mshta.exe
2013-11-27 07:29:35 ----A---- C:\windows\system32\msfeeds.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\licmgr10.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\jscript.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\inseng.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\imgutil.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\iexpress.exe
2013-11-27 07:29:35 ----A---- C:\windows\system32\iepeers.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\iedkcs32.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\ieapfltr.dat
2013-11-27 07:29:35 ----A---- C:\windows\system32\icardie.dll
2013-11-27 07:29:35 ----A---- C:\windows\system32\dxtmsft.dll
2013-11-24 13:40:53 ----D---- C:\Users\Mato\AppData\Roaming\Electrum
2013-11-24 13:38:41 ----D---- C:\Program Files (x86)\Electrum

======List of files/folders modified in the last 1 month======

2013-12-23 22:39:34 ----D---- C:\windows\Temp
2013-12-23 22:36:46 ----D---- C:\ProgramData\Bigfoot Networks
2013-12-23 22:36:34 ----D---- C:\Windows
2013-12-23 22:31:34 ----D---- C:\windows\System32
2013-12-23 22:31:34 ----D---- C:\windows\inf
2013-12-23 22:31:34 ----A---- C:\windows\system32\PerfStringBackup.INI
2013-12-23 22:26:31 ----D---- C:\windows\system32\Tasks
2013-12-23 22:26:30 ----HD---- C:\ProgramData
2013-12-23 22:26:30 ----D---- C:\windows\Tasks
2013-12-23 22:26:30 ----D---- C:\Program Files
2013-12-23 22:25:49 ----D---- C:\windows\system32\config
2013-12-23 21:33:14 ----D---- C:\Users\Mato\AppData\Roaming\DAEMON Tools Lite
2013-12-23 21:12:06 ----D---- C:\Users\Mato\AppData\Roaming\Media Player Classic
2013-12-23 20:54:04 ----SHD---- C:\System Volume Information
2013-12-23 20:48:15 ----SHD---- C:\Boot
2013-12-23 20:44:24 ----D---- C:\Users\Mato\AppData\Roaming\uTorrent
2013-12-23 20:44:14 ----D---- C:\windows\Panther
2013-12-23 20:44:14 ----D---- C:\windows\Logs
2013-12-23 20:44:14 ----D---- C:\windows\debug
2013-12-23 19:53:36 ----D---- C:\ProgramData\PMB Files
2013-12-21 22:17:40 ----D---- C:\Users\Mato\AppData\Roaming\Skype
2013-12-18 17:30:45 ----D---- C:\Program Files\WinRAR
2013-12-18 13:41:43 ----D---- C:\windows\Microsoft.NET
2013-12-18 13:41:31 ----D---- C:\windows\SysWOW64
2013-12-18 13:41:30 ----D---- C:\windows\system32\drivers
2013-12-18 13:41:30 ----D---- C:\windows\system32\catroot
2013-12-18 13:41:29 ----D---- C:\windows\system32\DriverStore
2013-12-18 08:31:25 ----RD---- C:\Program Files (x86)
2013-12-18 08:27:47 ----SD---- C:\Users\Mato\AppData\Roaming\Microsoft
2013-12-17 23:31:20 ----D---- C:\windows\system32\catroot2
2013-12-17 17:17:05 ----SHD---- C:\windows\Installer
2013-12-15 11:13:23 ----A---- C:\windows\DCEBoot64.exe
2013-12-15 10:31:22 ----D---- C:\windows\system32\MRT
2013-12-15 10:31:21 ----A---- C:\windows\system32\MRT.exe
2013-12-14 16:05:15 ----D---- C:\windows\rescache
2013-12-14 10:44:55 ----D---- C:\ProgramData\Trend Micro
2013-12-13 12:22:14 ----D---- C:\windows\system32\drivers\etc
2013-12-12 10:14:15 ----D---- C:\windows\winsxs
2013-12-12 10:13:31 ----D---- C:\windows\SYSWOW64\sk-SK
2013-12-12 10:13:31 ----D---- C:\windows\system32\sk-SK
2013-12-12 10:13:31 ----D---- C:\Program Files\Windows Media Player
2013-12-12 10:13:31 ----D---- C:\Program Files\Internet Explorer
2013-12-12 10:13:31 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-12 10:13:31 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-12 10:11:30 ----D---- C:\ProgramData\Microsoft Help
2013-12-11 17:39:05 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-11 13:19:13 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2013-12-10 03:13:11 ----A---- C:\windows\SYSWOW64\nvspcap.dll
2013-12-10 03:13:01 ----A---- C:\windows\system32\nvspcap64.dll
2013-12-09 08:54:27 ----D---- C:\ProgramData\NVIDIA Corporation
2013-12-09 08:30:09 ----D---- C:\Program Files\NVIDIA Corporation
2013-12-09 08:30:09 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-12-09 08:30:05 ----RD---- C:\Users
2013-12-08 11:13:24 ----D---- C:\Program Files\Common Files
2013-12-08 11:10:54 ----D---- C:\windows\AutoKMS
2013-12-08 11:06:31 ----D---- C:\windows\SYSWOW64\drivers
2013-12-08 11:06:12 ----D---- C:\ProgramData\Norton
2013-12-05 10:17:34 ----D---- C:\windows\system32\NDF
2013-12-05 10:15:44 ----D---- C:\Program Files (x86)\PdaNet for Android
2013-12-05 09:42:26 ----A---- C:\windows\system32\nvaudcap64v.dll
2013-12-04 22:23:37 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2013-12-04 22:23:07 ----D---- C:\windows\SYSWOW64\en-US
2013-12-04 22:23:07 ----D---- C:\windows\system32\en-US
2013-12-04 22:23:03 ----SD---- C:\ProgramData\Microsoft
2013-12-03 15:18:48 ----A---- C:\windows\Slovnik 2005.INI
2013-11-29 19:21:49 ----D---- C:\ProgramData\Skype
2013-11-29 19:21:48 ----RD---- C:\Program Files (x86)\Skype
2013-11-28 20:25:58 ----D---- C:\Program Files (x86)\JDownloader
2013-11-27 14:36:10 ----D---- C:\windows\SYSWOW64\migration
2013-11-27 14:36:10 ----D---- C:\windows\system32\migration
2013-11-27 14:36:10 ----D---- C:\windows\PolicyDefinitions

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iaStor.sys [2011-11-30 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\windows\system32\drivers\iusb3hcs.sys [2012-01-04 16152]
R0 nvpciflt;nvpciflt; C:\windows\system32\DRIVERS\nvpciflt.sys [2013-11-14 32544]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2013-08-18 564824]
R0 tmcomm;tmcomm; C:\windows\system32\DRIVERS\tmcomm.sys [2013-09-04 282624]
R0 TMEBC;TMEBC; C:\windows\system32\DRIVERS\TMEBC64.sys [2013-07-01 50976]
R1 BfLwf;Bigfoot Networks Bandwidth Control; C:\windows\system32\DRIVERS\bflwfx64.sys [2012-03-08 75880]
R1 ElbyCDIO;ElbyCDIO Driver; C:\windows\System32\Drivers\ElbyCDIO.sys [2007-08-07 32712]
R1 tmactmon;tmactmon; C:\windows\system32\DRIVERS\tmactmon.sys [2013-09-04 116264]
R1 tmevtmgr;tmevtmgr; C:\windows\system32\DRIVERS\tmevtmgr.sys [2013-09-04 85424]
R1 tmtdi;Trend Micro TDI Driver; C:\windows\system32\DRIVERS\tmtdi.sys [2011-08-22 105744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 TurboB;Turbo Boost UI Monitor driver; C:\windows\system32\DRIVERS\TurboB.sys [2012-01-20 16128]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\windows\system32\DRIVERS\clwvd.sys [2013-03-05 40896]
R3 ElbyCDFL;ElbyCDFL; C:\windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 40648]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2012-12-14 5353888]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2012-01-10 4731112]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\iusb3hub.sys [2012-01-04 355096]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\windows\system32\DRIVERS\iusb3xhc.sys [2012-01-04 786200]
R3 L1C;NDIS Miniport Driver for the Killer e2200 PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\e22w7x64.sys [2012-03-08 161616]
R3 MBfilt;MBfilt; C:\windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2011-12-01 11417088]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [2010-01-18 14136]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2013-12-05 39200]
R3 pneteth;PdaNet Broadband; C:\windows\system32\DRIVERS\pneteth.sys [2011-11-25 15360]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\windows\system32\DRIVERS\RtsPStor.sys [2011-12-06 339048]
R3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
R3 StillCam;Still Serial Digital Camera Driver; C:\windows\system32\drivers\serscan.sys [2009-07-14 12288]
R3 tmeevw;tmeevw; C:\windows\system32\DRIVERS\tmeevw.sys [2013-06-13 100640]
R3 tmnciesc;tmnciesc; C:\windows\system32\DRIVERS\tmnciesc.sys [2013-05-15 303392]
R3 WinUsb;Android USB Driver; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
S3 BthEnum;Bluetooth Enumerator Service; C:\windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2012-03-15 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\windows\system32\DRIVERS\btmaux.sys [2011-12-13 94720]
S3 btmhsf;btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [2011-12-13 747008]
S3 ibtfltcoex;ibtfltcoex; C:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-12-14 60416]
S3 MGHwCtrl;MGHwCtrl; \??\C:\Program Files\MSI\MSI Software Install\MGHwCtrl.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SynTP;Synaptics Pointing Device Driver; C:\windows\system32\drivers\SynTP.sys [2010-09-16 1393200]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbser;Nokia USB Serial Port Driver ; C:\windows\system32\DRIVERS\usbser.sys [2010-11-21 32768]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-01-15 465216]
R2 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2013-07-15 305760]
R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2013-12-13 807800]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-12-20 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-12-20 1104208]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-12-07 2429544]
R2 Micro Star SCM;Micro Star SCM; C:\Program Files (x86)\S-Bar\MSIService.exe [2011-11-03 160768]
R2 mi-raysat_3dsmax2012_64;mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit; C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe [2011-02-22 86016]
R2 MSI Foundation Service;MSI Foundation Service; C:\Program Files (x86)\MSI\MSI HOUSE\MSIFoundationService.exe [2010-07-17 12800]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [2012-01-03 138768]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-10 15129376]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2013-11-11 922912]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2013-09-08 76888]
R2 PSI_SVC_2_x64;Protexis Licensing V2 x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-11-30 336824]
R2 Qualcomm Atheros Killer Service;Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [2012-03-08 492032]
R2 SplashtopRemoteService;Splashtop® Remote Service; C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRService.exe [2013-09-02 790368]
R2 SSUService;Splashtop Software Updater Service; C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [2013-08-07 609056]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 2292096]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-12-20 1304912]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.5; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2012-01-20 149504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-18 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2012-12-14 277616]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-08-19 1431888]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-18 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-03-08 50921648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-10 119408]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2013-08-20 1255736]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2008-07-29 4737024]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------

Ďakujem M.T.

#2 Příspěvek od **Roli** » 24 pro 2013 12:41

trbi píše:Dobrý deň, prosím o kontrolu logu, môj notebook pri hraní náročnejších hier keď sa značne zahreje prepne do modrej obrazovky kde je okrem iného napísane "dumping physical memory to disk" a potom sa reštartuje

Zdravím, to je celkem normální, že se PC při přehrátí kvůli ochraně samo vypne.

Doporučím chladící podložku plus Ti odstraním ty šmejdy co tam máš.

Tohle fixni v HJT :

R3 - URLSearchHook: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE.dll
O2 - BHO: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE.dll
O3 - Toolbar: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.5\iobitappsToolbarIE.dll
O4 - HKLM\..\Run: [UpdReg] C:\windows\UpdReg.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe

HJT najdeš zde :

C:\Program Files\trend micro\Mato.exe

Fix znamená že spustíš HJT Obrázek

jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.

Přes Odebrat programy odinstaluj vše IObit

Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)

Služba Google Update (gupdatem)

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.

V Plánovači úkolů zakaž Google Update bude to tam několikrát.

Stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:

Kód: Vybrat vše

:processes
explorer.exe       

:files 
C:\*.tmp
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\windows\tasks\AutoKMS.job
C:\windows\AutoKMS

:commands
[purity]
[emptytemp]
[start explorer]

klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem chci zkopírovat obsah logu uloženého na C:\_OTMoveIt\MovedFiles\

Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.

Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Nakonec použij Mbam z mého podpisu a také mi sem z něj dej log, předem nic nemazat !

trbi · #3 Příspěvek od **trbi** » 24 pro 2013 14:07

Toto vypísal OTM program:

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\*.tmp not found.
C:\WINDOWS\System32\tmp3C44.tmp moved successfully.
C:\WINDOWS\System32\tmp3C45.tmp moved successfully.
C:\WINDOWS\8A809006C25A4A3A9DAB94659BCDB107.TMP folder moved successfully.
File move failed. C:\WINDOWS\SF24096AA.tmp scheduled to be moved on reboot.
C:\windows\tasks\AutoKMS.job moved successfully.
C:\windows\AutoKMS folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Mato
->Temp folder emptied: 26688391 bytes
->Temporary Internet Files folder emptied: 72913 bytes
->Java cache emptied: 47147 bytes
->FireFox cache emptied: 28666934 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 617 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1962934 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 71123 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50581 bytes
RecycleBin emptied: 3073976 bytes

Total Files Cleaned = 58,00 mb

OTM by OldTimer - Version 3.1.21.0 log created on 12242013_140359

Files moved on Reboot...
File move failed. C:\WINDOWS\SF24096AA.tmp scheduled to be moved on reboot.
C:\Users\Mato\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Mato\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRF{4D5FDA61-78B3-42FB-BFCA-87FBCACB98DA}.tmp moved successfully.
C:\Users\Mato\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{D498D410-CB83-4445-BF0E-AF6E2E550ADB}.tmp moved successfully.
C:\Users\Mato\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{F70BE098-FB78-453F-80DC-69D3A669B658}.tmp moved successfully.
C:\Users\Mato\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

Registry entries deleted on Reboot...

trbi · #4 Příspěvek od **trbi** » 24 pro 2013 14:11

Toto napísal ADWCleaner:

# AdwCleaner v3.016 - Report created 24/12/2013 at 14:09:28
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Mato - MATO-MSI
# Running from : D:\Download\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : Application Updater
Service Deleted : splashtopremoteservice
Service Deleted : SSUService

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Splashtop
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\Complitly
Folder Deleted : C:\Program Files (x86)\IObit Apps Toolbar
[!] Folder Deleted : C:\Program Files (x86)\Splashtop
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\Users\Mato\AppData\Local\Splashtop
Folder Deleted : C:\Users\Mato\AppData\Local\thinstall
Folder Deleted : C:\Users\Mato\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Mato\AppData\LocalLow\SimplyTech
Folder Deleted : C:\Users\Mato\AppData\Roaming\Complitly
Folder Deleted : C:\Users\Mato\AppData\Roaming\thinstall
Folder Deleted : C:\Users\Mato\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
Folder Deleted : C:\Users\Mato\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Folder Deleted : C:\Users\Mato\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Folder Deleted : C:\Users\Mato\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Folder Deleted : C:\Users\Mato\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
File Deleted : C:\Users\Mato\AppData\Roaming\Mozilla\Firefox\Profiles\750m12nv.default\user.js

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\heoldelcflnigdllmlopiefhkkobendj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Key Deleted : HKCU\Software\Complitly
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Splashtop Inc.
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\Software\SimplyGen
Key Deleted : HKLM\Software\Splashtop Inc.
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B7C5EA94-B96A-41F5-BE95-25D78B486678}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Splashtop Software Updater
Key Deleted : HKLM\Software\Classes\Installer\Features\49AE5C7BA69B5F14EB59527DB8846687
Key Deleted : HKLM\Software\Classes\Installer\Products\49AE5C7BA69B5F14EB59527DB8846687

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Mozilla Firefox v26.0 (sk)

[ File : C:\Users\Mato\AppData\Roaming\Mozilla\Firefox\Profiles\750m12nv.default\prefs.js ]

-\\ Google Chrome v32.0.1700.41

[ File : C:\Users\Mato\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [5946 octets] - [24/12/2013 14:08:56]
AdwCleaner[S0].txt - [5825 octets] - [24/12/2013 14:09:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5885 octets] ##########

trbi · #5 Příspěvek od **trbi** » 24 pro 2013 15:27

Výpis z Mbam:

Malwarebytes Anti-Malware (Skúšobná verzia) 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2013.12.24.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Mato :: MATO-MSI [administrátor]

Ochrana: Zapnuté

24. 12. 2013 14:21:23
MBAM-log-2013-12-24 (15-26-24).txt

Typ kontroly: Úplná kontrola (C:\|D:\|E:\|)
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 489090
Uplynutý čas: 1 hod, 3 min, 54 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 0
(Škodlivé položky neboli zistené)

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 0
(Škodlivé položky neboli zistené)

Detegované súbory: 6
C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll (PUP.RiskwareTool.CK) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\Adobe\Adobe Photoshop CS6\amtlib.dll (PUP.RiskwareTool.CK) -> Žiadna úloha nevykonaná.
D:\Hry\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe (Packer.ModifiedUPX) -> Žiadna úloha nevykonaná.
D:\_OTM\MovedFiles\12242013_140359\C_WINDOWS\AutoKMS\AUTOKMS.EXE (Trojan.AutoKMS) -> Žiadna úloha nevykonaná.
E:\aTubeCatcher.exe (PUP.Optional.Spigot.A) -> Žiadna úloha nevykonaná.
E:\USB\aTube_Catcher.exe (PUP.Optional.OpenCandy) -> Žiadna úloha nevykonaná.

(koniec)

trbi · #6 Příspěvek od **trbi** » 25 pro 2013 22:33

Toto je problém:

https://www.dropbox.com/s/990rxb9pfz3gedv/chyba.png

#7 Příspěvek od **Roli** » 26 pro 2013 21:25

Znovu spusť OTMoveIt a nahoře v aplikaci klini na CleanUP!

tímto po sobě uklidí.

AdwCleanerem už jsi mazal i když jsem psal něco jiného, no co stalo se.

To co našel Mbam bych nechal smazat.

trbi píše:Toto je problém

No to ano zřejmě cosi s grafikou, použij, WhoCrashed

po spuštění klikni na Analyze,

aplikace po chvilce vytvoří zprávu o příčině pádu, kterou mi sem nakopíruj.

trbi · #8 Příspěvek od **trbi** » 28 pro 2013 20:26

Odpoved s programu Whocrashed:

--------------------------------------------------------------------------------
Welcome to WhoCrashed (HOME EDITION) v 5.00
--------------------------------------------------------------------------------

This program checks for drivers which have been crashing your computer. If your computer has displayed a blue screen of death, suddenly rebooted or shut down then this program will help you find the root cause and possibly a solution.

Whenever a computer suddenly reboots without displaying any notice or blue screen of death, the first thing that is often thought about is a hardware failure. In reality, on Windows most crashes are caused by malfunctioning device drivers and kernel modules. In case of a kernel error, many computers do not show a blue screen unless they are configured for this. Instead these systems suddenly reboot without any notice.

This program will analyze your crash dumps with the single click of a button. It will tell you what drivers are likely to be responsible for crashing your computer. It will report a conclusion which offers suggestions on how to proceed in any situation while the analysis report will display internet links which will help you further troubleshoot any detected problems.

To obtain technical support visit www.resplendence.com/support

Click here to check if you have the latest version or if an update is available.

Just click the Analyze button for a comprehensible report ...

--------------------------------------------------------------------------------
Home Edition Notice
--------------------------------------------------------------------------------

This version of WhoCrashed is free for use at home only. If you would like to use this software at work or in a commercial environment you should get the professional edition of WhoCrashed which allows you to perform more thorough and detailed analysis. It also offers a range of additional features such as remote analysis on remote directories and remote computers on the network.

Click here for more information on the professional edition.
Click here to buy the the professional edition of WhoCrashed.

--------------------------------------------------------------------------------
System Information (local)
--------------------------------------------------------------------------------

computer name: MATO-MSI
windows version: Windows 7 Service Pack 1, 6.1, build: 7601
windows dir: C:\windows
Hardware: GT60, Micro-Star International Co., Ltd., MS-16F3
CPU: GenuineIntel Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz Intel586, level: 6
8 logical processors, active mask: 255
RAM: 8481669120 total
VM: 2147352576, free: 1896251392

--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dump directory: C:\windows\Minidump

Crash dumps are enabled on your computer.

On Fri 27. 12. 2013 21:11:05 GMT your computer crashed
crash dump file: C:\windows\Minidump\122713-7378-01.dmp
This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0x8ED700)
Bugcheck code: 0x116 (0xFFFFFA800D8E3010, 0xFFFFF88007119700, 0xFFFFFFFFC000009A, 0x4)
Error: VIDEO_TDR_ERROR
file path: C:\windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Windows Kernel Mode Driver, Version 320.49
company: NVIDIA Corporation
description: NVIDIA Windows Kernel Mode Driver, Version 320.49
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation).
Google query: NVIDIA Corporation VIDEO_TDR_ERROR

On Fri 27. 12. 2013 21:11:05 GMT your computer crashed
crash dump file: C:\windows\memory.dmp
This was probably caused by the following module: nvlddmkm.sys (0xFFFFF88007119700)
Bugcheck code: 0x116 (0xFFFFFA800D8E3010, 0xFFFFF88007119700, 0xFFFFFFFFC000009A, 0x4)
Error: VIDEO_TDR_ERROR
file path: C:\windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Windows Kernel Mode Driver, Version 320.49
company: NVIDIA Corporation
description: NVIDIA Windows Kernel Mode Driver, Version 320.49
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation).
Google query: NVIDIA Corporation VIDEO_TDR_ERROR

On Wed 25. 12. 2013 21:46:57 GMT your computer crashed
crash dump file: C:\windows\Minidump\122513-7378-01.dmp
This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0x8ED700)
Bugcheck code: 0x116 (0xFFFFFA800D5FA4E0, 0xFFFFF88007117700, 0xFFFFFFFFC000009A, 0x4)
Error: VIDEO_TDR_ERROR
file path: C:\windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Windows Kernel Mode Driver, Version 320.49
company: NVIDIA Corporation
description: NVIDIA Windows Kernel Mode Driver, Version 320.49
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation).
Google query: NVIDIA Corporation VIDEO_TDR_ERROR

On Wed 25. 12. 2013 21:44:13 GMT your computer crashed
crash dump file: C:\windows\Minidump\122513-7394-01.dmp
This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0x8ED700)
Bugcheck code: 0x116 (0xFFFFFA800DD9C4E0, 0xFFFFF88006303700, 0xFFFFFFFFC000009A, 0x4)
Error: VIDEO_TDR_ERROR
file path: C:\windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Windows Kernel Mode Driver, Version 320.49
company: NVIDIA Corporation
description: NVIDIA Windows Kernel Mode Driver, Version 320.49
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation).
Google query: NVIDIA Corporation VIDEO_TDR_ERROR

On Wed 25. 12. 2013 21:25:27 GMT your computer crashed
crash dump file: C:\windows\Minidump\122513-16723-01.dmp
This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0x8ED700)
Bugcheck code: 0x116 (0xFFFFFA800A0E94E0, 0xFFFFF88007129700, 0xFFFFFFFFC000009A, 0x4)
Error: VIDEO_TDR_ERROR
file path: C:\windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Windows Kernel Mode Driver, Version 320.49
company: NVIDIA Corporation
description: NVIDIA Windows Kernel Mode Driver, Version 320.49
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation).
Google query: NVIDIA Corporation VIDEO_TDR_ERROR

On Wed 25. 12. 2013 20:50:10 GMT your computer crashed
crash dump file: C:\windows\Minidump\122513-7659-01.dmp
This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0x8ED700)
Bugcheck code: 0x116 (0xFFFFFA80074D93E0, 0xFFFFF88006355700, 0xFFFFFFFFC000009A, 0x4)
Error: VIDEO_TDR_ERROR
file path: C:\windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Windows Kernel Mode Driver, Version 320.49
company: NVIDIA Corporation
description: NVIDIA Windows Kernel Mode Driver, Version 320.49
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation).
Google query: NVIDIA Corporation VIDEO_TDR_ERROR

On Wed 25. 12. 2013 14:14:15 GMT your computer crashed
crash dump file: C:\windows\Minidump\122513-8782-01.dmp
This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0x8ED700)
Bugcheck code: 0x116 (0xFFFFFA800E2894E0, 0xFFFFF8800630F700, 0xFFFFFFFFC000009A, 0x4)
Error: VIDEO_TDR_ERROR
file path: C:\windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Windows Kernel Mode Driver, Version 320.49
company: NVIDIA Corporation
description: NVIDIA Windows Kernel Mode Driver, Version 320.49
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation).
Google query: NVIDIA Corporation VIDEO_TDR_ERROR

On Wed 25. 12. 2013 13:43:19 GMT your computer crashed
crash dump file: C:\windows\Minidump\122513-8673-01.dmp
This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0x8ED700)
Bugcheck code: 0x116 (0xFFFFFA800DE5B4E0, 0xFFFFF8800FD08700, 0xFFFFFFFFC000009A, 0x4)
Error: VIDEO_TDR_ERROR
file path: C:\windows\system32\drivers\nvlddmkm.sys
product: NVIDIA Windows Kernel Mode Driver, Version 320.49
company: NVIDIA Corporation
description: NVIDIA Windows Kernel Mode Driver, Version 320.49
Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation).
Google query: NVIDIA Corporation VIDEO_TDR_ERROR

--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

8 crash dumps have been found and analyzed. A third party driver has been identified to be causing system crashes on your computer. It is strongly suggested that you check for updates for these drivers on their company websites. Click on the links below to search with Google for updates for these drivers:

nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 320.49 , NVIDIA Corporation)

If no updates for these drivers are available, try searching with Google on the names of these drivers in combination the errors that have been reported for these drivers and include the brand and model name of your computer as well in the query. This often yields interesting results from discussions from users who have been experiencing similar problems.

Read the topic general suggestions for troubleshooting system crashes for more information.

Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.

#9 Příspěvek od **Roli** » 29 pro 2013 21:30

Ovladače od grafiky máš aktuální ?

Stáhni MEMTEST

soubor rozbal a spusť exe soubor.

Připoj flashdisk pozor vše co na něm je bude smazáno !,

v okénku Select your USB Flash Drive vyber tento disk a dej Create.

Během chvilky se Memtest nainstaluje.

Flashdisk nech v USB, restartuj PC a nabootuj z něj.

Před tím samozřemě musíš v Bios Setup do kterého se dostaneš při restartu mačkáním klávesy :

* DEL
* F2
* F1
* F10

záleží na PC, ale vždy je to na monitoru napsáno,

otevři nabídku ADVANCED BIOS FEATURES a vyhledej Boot Devices 0 až 4 nebo Boot Sequence.

Na první místo nastav Flashdisk,

na druhé pevný disk HDD, u obou položek bývá napsán i výrobce.

Stisknutím Save většinou je to F10 a potvrzením Entrem uložíš nastavení,

pak ještě stisknutím Save and Exit se dostaneš z Biosu.

Test nech projet minimálně jednou, ideálně však několikrát třeba přes noc a s každým RAM modulem zvlášť.

Pak dej vědět jak to dopadlo.

VIRY.CZ

Modrá obrazovka s dumping physical memory to disk

Modrá obrazovka s dumping physical memory to disk

Re: Modrá obrazovka s dumping physical memory to disk

Re: Modrá obrazovka s dumping physical memory to disk

Re: Modrá obrazovka s dumping physical memory to disk

Re: Modrá obrazovka s dumping physical memory to disk

Re: Modrá obrazovka s dumping physical memory to disk

Re: Modrá obrazovka s dumping physical memory to disk

Re: Modrá obrazovka s dumping physical memory to disk

Re: Modrá obrazovka s dumping physical memory to disk