Log z Combofix-u
Napsal: 04 lis 2016 21:24
Dobrý deń dneska som musel použiť combofix a na stránke http://www.bleepingcomputer.com/combofi ... t-combofix je napísané, že log ktorý mi combofix na konci vypíše mám dať sem.
neviem tu vložiť txt súbor ale toto mi vyhodilo po tom ako combofix preskenoval moj PC
ComboFix 16-10-23.01 - Michal . 11. 2016 20:54:10.2.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1051.18.16332.11961 [GMT 1:00]
Running from: C:\Users\Michal\Desktop\xyz.exe
AV: ESET NOD32 Antivirus 9.0.401.1 *Disabled/Updated* {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
SP: ESET NOD32 Antivirus 9.0.401.1 *Disabled/Updated* {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
((((((((((((((((((((((((( Files Created from 2016-10-04 to 2016-11-04 )))))))))))))))))))))))))))))))
2016-11-04 20:04:54 . 2016-11-04 20:04:54 -------- d-----w- C:\Users\Rodina\AppData\Local\temp
2016-11-04 20:04:54 . 2016-11-04 20:04:54 -------- d-----w- C:\Users\Default\AppData\Local\temp
2016-11-04 17:16:28 . 2016-11-04 17:16:28 -------- d-----w- C:\Program Files\CPUID
2016-11-04 11:58:32 . 2016-11-04 13:58:50 -------- d-----w- C:\Program Files (x86)\Ubisoft
2016-11-03 22:12:20 . 2016-11-03 22:12:20 -------- d-----w- C:\Users\Michal\AppData\Local\The Witcher 2
2016-11-03 21:21:34 . 2016-10-25 20:00:11 134712 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2016-11-03 21:21:20 . 2016-09-09 18:25:58 269600 ----a-w- C:\Windows\SysWow64\vulkan-1.dll
2016-11-03 21:21:20 . 2016-09-09 18:25:28 110880 ----a-w- C:\Windows\SysWow64\vulkaninfo.exe
2016-11-03 21:21:20 . 2016-09-09 18:25:10 261920 ----a-w- C:\Windows\system32\vulkan-1.dll
2016-11-03 21:21:20 . 2016-09-09 18:24:38 125216 ----a-w- C:\Windows\system32\vulkaninfo.exe
2016-11-03 21:21:19 . 2016-11-03 21:21:19 -------- d-----w- C:\Program Files (x86)\VulkanRT
2016-11-03 20:58:44 . 2016-10-25 20:18:29 95800 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2016-11-03 20:58:44 . 2016-10-25 20:18:29 47672 ----a-w- C:\Windows\system32\drivers\nvvad64v.sys
2016-11-03 20:58:44 . 2016-10-25 20:18:29 106040 ----a-w- C:\Windows\system32\nvaudcap64v.dll
2016-11-03 20:52:03 . 2016-11-03 20:52:03 -------- d-----w- C:\Program Files (x86)\Lavalys
2016-11-03 10:47:25 . 2016-11-03 10:47:25 -------- d-----w- C:\Users\Michal\AppData\Local\DayZ
2016-10-30 18:16:26 . 2016-10-30 18:16:26 -------- d-----w- C:\Program Files (x86)\Sony
2016-10-30 18:14:42 . 2016-10-30 18:16:32 -------- d-----w- C:\Program Files\Sony
2016-10-30 17:01:10 . 2016-10-30 17:01:10 -------- d-----w- C:\ProgramData\Pinnacle
2016-10-30 17:01:01 . 2016-10-30 17:01:01 -------- d-----w- C:\Users\Michal\AppData\Local\Downloaded Installations
2016-10-21 13:27:28 . 2016-10-19 22:48:22 46024 ----a-w- C:\Windows\system32\nvhdap64.dll
2016-10-21 13:27:28 . 2016-10-19 22:48:22 212936 ----a-w- C:\Windows\system32\drivers\nvhda64v.sys
2016-10-21 13:27:27 . 2016-10-25 21:39:31 492744 ----a-w- C:\Windows\system32\nvumdshimx.dll
2016-10-21 13:27:25 . 2016-10-18 21:23:01 1951680 ----a-w- C:\Windows\system32\nvdispco6437557.dll
2016-10-21 13:27:25 . 2016-10-18 21:23:01 1586744 ----a-w- C:\Windows\system32\nvdispgenco6437557.dll
2016-10-21 13:12:27 . 2016-10-21 13:12:27 -------- d-----w- C:\ProgramData\RzSurroundVAD_1.1.62.0
2016-10-21 13:11:44 . 2016-09-17 00:12:20 44144 ----a-w- C:\Windows\system32\drivers\rzpmgrk.sys
2016-10-16 11:09:55 . 2016-10-25 21:39:31 14397272 ----a-w- C:\Windows\SysWow64\nvd3dum.dll
2016-10-16 11:09:55 . 2016-10-01 21:15:29 1935808 ----a-w- C:\Windows\system32\nvdispco6437306.dll
2016-10-16 11:09:55 . 2016-10-01 21:15:29 1585088 ----a-w- C:\Windows\system32\nvdispgenco6437306.dll
2016-10-16 11:04:08 . 2016-10-16 11:04:08 49176 ----a-w- C:\Windows\system32\drivers\RzSurroundVAD.sys
2016-10-16 10:30:22 . 2016-10-16 10:30:22 -------- d-----w- C:\Users\Michal\AppData\Roaming\The Creative Assembly
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2016-10-26 18:39:40 . 2016-01-16 15:11:21 796352 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2016-10-26 18:39:40 . 2016-01-16 15:11:21 142528 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2016-10-25 21:39:31 . 2016-08-27 08:46:08 19925152 ----a-w- C:\Windows\system32\nvwgf2umx.dll
2016-10-25 21:39:31 . 2016-01-16 16:34:51 3933968 ----a-w- C:\Windows\system32\nvapi64.dll
2016-10-25 21:39:31 . 2016-01-16 16:34:51 3473368 ----a-w- C:\Windows\SysWow64\nvapi.dll
2016-10-25 21:39:31 . 2016-01-16 16:34:51 17429080 ----a-w- C:\Windows\system32\nvd3dumx.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:41 1854008 ----a-w- C:\Windows\system32\nvspcap64.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:41 1756728 ----a-w- C:\Windows\system32\nvspbridge64.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:41 121912 ----a-w- C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:40 1454136 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:40 1318968 ----a-w- C:\Windows\SysWow64\nvspbridge.dll
2016-10-25 20:17:53 . 2016-01-16 16:38:13 6386232 ----a-w- C:\Windows\system32\nvcpl.dll
2016-10-25 20:17:53 . 2016-01-16 16:38:13 2475968 ----a-w- C:\Windows\system32\nvsvc64.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 81856 ----a-w- C:\Windows\system32\nv3dappshextr.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 69568 ----a-w- C:\Windows\system32\nvshext.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 548408 ----a-w- C:\Windows\system32\nv3dappshext.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 392128 ----a-w- C:\Windows\system32\nvmctray.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 1764408 ----a-w- C:\Windows\system32\nvsvcr.dll
2016-10-24 06:31:48 . 2016-01-16 16:38:13 7507695 ----a-w- C:\Windows\system32\nvcoproc.bin
2016-10-21 13:24:39 . 2016-01-16 12:44:25 97856 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2016-10-19 22:48:22 . 2016-07-07 11:37:04 1595456 ----a-w- C:\Windows\system32\nvhdagenco6420103.dll
2016-09-17 00:46:09 . 2016-10-02 14:21:57 1922616 ----a-w- C:\Windows\system32\nvdispco6437290.dll
2016-09-17 00:46:09 . 2016-10-02 14:21:57 1585088 ----a-w- C:\Windows\system32\nvdispgenco6437290.dll
2016-09-09 18:25:58 . 2016-09-09 18:25:58 269600 ----a-w- C:\Windows\SysWow64\vulkan-1-1-0-26-0.dll
2016-09-09 18:25:28 . 2016-09-09 18:25:28 110880 ----a-w- C:\Windows\SysWow64\vulkaninfo-1-1-0-26-0.exe
2016-09-09 18:25:10 . 2016-09-09 18:25:10 261920 ----a-w- C:\Windows\system32\vulkan-1-1-0-26-0.dll
2016-09-09 18:24:38 . 2016-09-09 18:24:38 125216 ----a-w- C:\Windows\system32\vulkaninfo-1-1-0-26-0.exe
2016-09-07 20:27:07 . 2016-09-16 14:24:07 137840 ----a-w- C:\Windows\system32\drivers\rzpnk.sys
2016-08-29 10:53:45 . 2015-11-20 11:21:22 263296 ----a-w- C:\Windows\system32\drivers\eamonm.sys
2016-08-29 10:53:45 . 2015-11-20 11:21:22 197288 ----a-w- C:\Windows\system32\drivers\ehdrv.sys
2016-08-29 10:53:45 . 2015-11-20 11:21:22 181416 ----a-w- C:\Windows\system32\drivers\epfwwfpr.sys
2016-08-29 09:22:56 . 2016-08-29 09:22:56 75744 ----a-w- C:\Windows\system32\DriverInstallCA.dll
2016-08-29 09:22:56 . 2016-08-29 09:22:56 251872 ----a-w- C:\Windows\system32\DriverInstallCACMD.exe
2016-08-25 23:28:29 . 2016-09-04 12:13:57 1920960 ----a-w- C:\Windows\system32\nvdispco6437270.dll
2016-08-25 23:28:29 . 2016-09-04 12:13:57 1586744 ----a-w- C:\Windows\system32\nvdispgenco6437270.dll
2016-08-19 08:12:50 . 2016-08-19 08:12:50 15816 ----a-w- C:\Windows\SysWow64\RzStats.IPC.dll
2016-08-13 09:50:30 . 2016-08-13 09:50:30 1700352 ----a-w- C:\Windows\SysWow64\gdiplus.dll
2016-08-13 09:50:30 . 2016-08-13 09:50:30 1060864 ----a-w- C:\Windows\SysWow64\mfc71.dll
2016-08-13 09:47:39 . 2016-08-13 09:47:39 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll
2016-08-11 14:31:06 . 2016-08-27 08:46:07 1922616 ----a-w- C:\Windows\system32\nvdispco6437254.dll
2016-08-11 14:31:06 . 2016-08-27 08:46:07 1586744 ----a-w- C:\Windows\system32\nvdispgenco6437254.dll
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2010-11-21 03:24:51 1475584]
"SteelSeries Engine"="C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe" [2014-10-09 19:44:14 87040]
"DAEMON Tools Lite Automount"="C:\Program Files\DAEMON Tools Lite\DTAgent.exe" [2016-01-15 14:59:14 4177784]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe" [2016-07-13 17:25:16 29494400]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe" [2016-01-15 20:43:14 8619224]
"uTorrent"="C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe" [2016-10-15 15:43:29 1977536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema 2"="C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" [2014-05-29 14:52:56 1442304]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-05-04 15:31:38 630912]
"Super Charger"="C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe" [2014-07-22 16:18:10 1014736]
"VICTORY Gaming Keyboard"="C:\Program Files (x86)\Gaming Keyboard\Monitor.exe" [2013-11-11 14:38:56 270336]
"Razer Synapse"="C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" [2016-08-22 08:20:52 596640]
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [2016-09-22 18:00:28 587288]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Killer Network Manager.lnk - C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe -minimize [2015-2-5 330240]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sh4native Sh4Removal
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"UpdReg"=C:\Windows\UpdReg.EXE
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe;C:\Program Files (x86)\Skype\Updater\Updater.exe [x]
R3 dmvsc;dmvsc;C:\Windows\system32\drivers\dmvsc.sys;C:\Windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 esgiguard;esgiguard;C:\Users\Michal\AppData\Local\Temp\RarSFX1\esgiguard.sys;C:\Users\Michal\AppData\Local\Temp\RarSFX1\esgiguard.sys [x]
R3 MSICDSetup;MSICDSetup;D:\CDriver64.sys;D:\CDriver64.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;D:\NTIOLib_X64.sys;D:\NTIOLib_X64.sys [x]
R3 NvContainerNetworkService;NVIDIA NetworkService Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
R3 NvStreamKms;NVIDIA KMS;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys;C:\Windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssdevfactory;SteelSeries Device Factory Service;C:\Windows\system32\DRIVERS\ssdevfactory.sys;C:\Windows\SYSNATIVE\DRIVERS\ssdevfactory.sys [x]
R3 Synth3dVsc;Synth3dVsc;C:\Windows\system32\drivers\synth3dvsc.sys;C:\Windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\system32\drivers\terminpt.sys;C:\Windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys;C:\Windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys;C:\Windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;C:\Windows\system32\drivers\tsusbhub.sys;C:\Windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;C:\Windows\system32\drivers\rdvgkmd.sys;C:\Windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
S0 amd_sata;amd_sata;C:\Windows\system32\DRIVERS\amd_sata.sys;C:\Windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;C:\Windows\system32\DRIVERS\amd_xata.sys;C:\Windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S1 BfLwf;Killer Bandwidth Control;C:\Windows\system32\DRIVERS\bflwfx64.sys;C:\Windows\SYSNATIVE\DRIVERS\bflwfx64.sys [x]
S1 eamonm;eamonm;C:\Windows\system32\DRIVERS\eamonm.sys;C:\Windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;C:\Windows\system32\DRIVERS\ehdrv.sys;C:\Windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.1;AODDriver4.1;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe;C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;C:\Windows\system32\DRIVERS\epfwwfpr.sys;C:\Windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 Killer Service V2;Killer Service V2;C:\Program Files\Killer Networking\Network Manager\KillerService.exe;C:\Program Files\Killer Networking\Network Manager\KillerService.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe;C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [x]
S2 NvContainerLocalSystem;NVIDIA LocalSystem Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
S2 NVIDIA Wireless Controller Service;NVIDIA Wireless Controller Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [x]
S2 Razer Game Scanner Service;Razer Game Scanner;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
S2 rzpmgrk;rzpmgrk;C:\Windows\system32\drivers\rzpmgrk.sys;C:\Windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
S2 rzpnk;rzpnk;C:\Windows\system32\drivers\rzpnk.sys;C:\Windows\SYSNATIVE\drivers\rzpnk.sys [x]
S2 RzSurroundVADStreamingService;RzSurroundVADStreamingService;C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe;C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [x]
S2 STCServ;Intel(R) Common Connectivity Framework;C:\Program Files\Intel\STCServ\STCServ.exe;C:\Program Files\Intel\STCServ\STCServ.exe [x]
S3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys;C:\Windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AsusVBus;AsusVBus;C:\Windows\system32\DRIVERS\AsusVBus.sys;C:\Windows\SYSNATIVE\DRIVERS\AsusVBus.sys [x]
S3 ATP;ASUS Touchpad;C:\Windows\system32\DRIVERS\AsusTP.sys;C:\Windows\SYSNATIVE\DRIVERS\AsusTP.sys [x]
S3 busenum;SteelBusSvc;C:\Windows\system32\DRIVERS\SteelBus64.sys;C:\Windows\SYSNATIVE\DRIVERS\SteelBus64.sys [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe;C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;C:\Windows\system32\DRIVERS\dtlitescsibus.sys;C:\Windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;C:\Windows\system32\DRIVERS\dtliteusbbus.sys;C:\Windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 Ke2200;NDIS Miniport Driver for Killer e2201/e2202 PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\e22w7x64.sys;C:\Windows\SYSNATIVE\DRIVERS\e22w7x64.sys [x]
S3 MBfilt;MBfilt;C:\Windows\system32\drivers\MBfilt64.sys;C:\Windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys;C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\system32\drivers\nvvad64v.sys;C:\Windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTCore64;RTCore64;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [x]
S3 RZSURROUNDVADService;Razer Surround Audio Service;C:\Windows\system32\drivers\RzSurroundVAD.sys;C:\Windows\SYSNATIVE\drivers\RzSurroundVAD.sys [x]
S3 SAlphamHid;SteelHIDSvc;C:\Windows\system32\DRIVERS\SAlpham64.sys;C:\Windows\SYSNATIVE\DRIVERS\SAlpham64.sys [x]
S3 usbfilter;AMD USB Filter Driver;C:\Windows\system32\DRIVERS\usbfilter.sys;C:\Windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VUSB3HUB;VIA USB 3 Root Hub Service;C:\Windows\system32\DRIVERS\ViaHub3.sys;C:\Windows\SYSNATIVE\DRIVERS\ViaHub3.sys [x]
S3 xhcdrv;VIA USB eXtensible Host Controller Service;C:\Windows\system32\DRIVERS\xhcdrv.sys;C:\Windows\SYSNATIVE\DRIVERS\xhcdrv.sys [x]
--- Other Services/Drivers In Memory ---
*NewlyCreated* - NTIOLIB_1_0_3
Contents of the 'Scheduled Tasks' folder
2016-11-04 C:\Windows\Tasks\Adobe Flash Player Updater.job
- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-16 15:11:21 . 2016-10-26 18:39:42]
2016-11-04 C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-23 19:20:07 . 2016-04-23 19:20:07]
2016-11-04 C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-23 19:20:07 . 2016-04-23 19:20:07]
--------- X64 Entries -----------
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VIAxHCUtl"="C:\Program Files\VIA XHCI UASP Utility\usb3Monitor" [X]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" [2015-03-12 07:04:46 8463064]
"MBCfg64"="C:\Windows\system32\MBCfg64.dll" [2014-02-21 09:57:40 41088]
"ShadowPlay"="C:\Windows\system32\nvspcap64.dll" [2016-10-25 20:18:30 1854008]
"IntelConnectCenter"="C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe" [2015-03-16 11:19:16 90112]
------- Supplementary Scan -------
uLocal Page = C:\Windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = C:\Windows\SysWOW64\blank.htm
Trusted Zone: eset.com\help
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\xv0j38tt.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
- - - - ORPHANS REMOVED - - - -
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Vopred ďakujem za pomoc
neviem tu vložiť txt súbor ale toto mi vyhodilo po tom ako combofix preskenoval moj PC
ComboFix 16-10-23.01 - Michal . 11. 2016 20:54:10.2.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1051.18.16332.11961 [GMT 1:00]
Running from: C:\Users\Michal\Desktop\xyz.exe
AV: ESET NOD32 Antivirus 9.0.401.1 *Disabled/Updated* {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
SP: ESET NOD32 Antivirus 9.0.401.1 *Disabled/Updated* {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
((((((((((((((((((((((((( Files Created from 2016-10-04 to 2016-11-04 )))))))))))))))))))))))))))))))
2016-11-04 20:04:54 . 2016-11-04 20:04:54 -------- d-----w- C:\Users\Rodina\AppData\Local\temp
2016-11-04 20:04:54 . 2016-11-04 20:04:54 -------- d-----w- C:\Users\Default\AppData\Local\temp
2016-11-04 17:16:28 . 2016-11-04 17:16:28 -------- d-----w- C:\Program Files\CPUID
2016-11-04 11:58:32 . 2016-11-04 13:58:50 -------- d-----w- C:\Program Files (x86)\Ubisoft
2016-11-03 22:12:20 . 2016-11-03 22:12:20 -------- d-----w- C:\Users\Michal\AppData\Local\The Witcher 2
2016-11-03 21:21:34 . 2016-10-25 20:00:11 134712 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2016-11-03 21:21:20 . 2016-09-09 18:25:58 269600 ----a-w- C:\Windows\SysWow64\vulkan-1.dll
2016-11-03 21:21:20 . 2016-09-09 18:25:28 110880 ----a-w- C:\Windows\SysWow64\vulkaninfo.exe
2016-11-03 21:21:20 . 2016-09-09 18:25:10 261920 ----a-w- C:\Windows\system32\vulkan-1.dll
2016-11-03 21:21:20 . 2016-09-09 18:24:38 125216 ----a-w- C:\Windows\system32\vulkaninfo.exe
2016-11-03 21:21:19 . 2016-11-03 21:21:19 -------- d-----w- C:\Program Files (x86)\VulkanRT
2016-11-03 20:58:44 . 2016-10-25 20:18:29 95800 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2016-11-03 20:58:44 . 2016-10-25 20:18:29 47672 ----a-w- C:\Windows\system32\drivers\nvvad64v.sys
2016-11-03 20:58:44 . 2016-10-25 20:18:29 106040 ----a-w- C:\Windows\system32\nvaudcap64v.dll
2016-11-03 20:52:03 . 2016-11-03 20:52:03 -------- d-----w- C:\Program Files (x86)\Lavalys
2016-11-03 10:47:25 . 2016-11-03 10:47:25 -------- d-----w- C:\Users\Michal\AppData\Local\DayZ
2016-10-30 18:16:26 . 2016-10-30 18:16:26 -------- d-----w- C:\Program Files (x86)\Sony
2016-10-30 18:14:42 . 2016-10-30 18:16:32 -------- d-----w- C:\Program Files\Sony
2016-10-30 17:01:10 . 2016-10-30 17:01:10 -------- d-----w- C:\ProgramData\Pinnacle
2016-10-30 17:01:01 . 2016-10-30 17:01:01 -------- d-----w- C:\Users\Michal\AppData\Local\Downloaded Installations
2016-10-21 13:27:28 . 2016-10-19 22:48:22 46024 ----a-w- C:\Windows\system32\nvhdap64.dll
2016-10-21 13:27:28 . 2016-10-19 22:48:22 212936 ----a-w- C:\Windows\system32\drivers\nvhda64v.sys
2016-10-21 13:27:27 . 2016-10-25 21:39:31 492744 ----a-w- C:\Windows\system32\nvumdshimx.dll
2016-10-21 13:27:25 . 2016-10-18 21:23:01 1951680 ----a-w- C:\Windows\system32\nvdispco6437557.dll
2016-10-21 13:27:25 . 2016-10-18 21:23:01 1586744 ----a-w- C:\Windows\system32\nvdispgenco6437557.dll
2016-10-21 13:12:27 . 2016-10-21 13:12:27 -------- d-----w- C:\ProgramData\RzSurroundVAD_1.1.62.0
2016-10-21 13:11:44 . 2016-09-17 00:12:20 44144 ----a-w- C:\Windows\system32\drivers\rzpmgrk.sys
2016-10-16 11:09:55 . 2016-10-25 21:39:31 14397272 ----a-w- C:\Windows\SysWow64\nvd3dum.dll
2016-10-16 11:09:55 . 2016-10-01 21:15:29 1935808 ----a-w- C:\Windows\system32\nvdispco6437306.dll
2016-10-16 11:09:55 . 2016-10-01 21:15:29 1585088 ----a-w- C:\Windows\system32\nvdispgenco6437306.dll
2016-10-16 11:04:08 . 2016-10-16 11:04:08 49176 ----a-w- C:\Windows\system32\drivers\RzSurroundVAD.sys
2016-10-16 10:30:22 . 2016-10-16 10:30:22 -------- d-----w- C:\Users\Michal\AppData\Roaming\The Creative Assembly
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2016-10-26 18:39:40 . 2016-01-16 15:11:21 796352 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2016-10-26 18:39:40 . 2016-01-16 15:11:21 142528 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2016-10-25 21:39:31 . 2016-08-27 08:46:08 19925152 ----a-w- C:\Windows\system32\nvwgf2umx.dll
2016-10-25 21:39:31 . 2016-01-16 16:34:51 3933968 ----a-w- C:\Windows\system32\nvapi64.dll
2016-10-25 21:39:31 . 2016-01-16 16:34:51 3473368 ----a-w- C:\Windows\SysWow64\nvapi.dll
2016-10-25 21:39:31 . 2016-01-16 16:34:51 17429080 ----a-w- C:\Windows\system32\nvd3dumx.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:41 1854008 ----a-w- C:\Windows\system32\nvspcap64.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:41 1756728 ----a-w- C:\Windows\system32\nvspbridge64.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:41 121912 ----a-w- C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:40 1454136 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2016-10-25 20:18:30 . 2016-07-08 14:55:40 1318968 ----a-w- C:\Windows\SysWow64\nvspbridge.dll
2016-10-25 20:17:53 . 2016-01-16 16:38:13 6386232 ----a-w- C:\Windows\system32\nvcpl.dll
2016-10-25 20:17:53 . 2016-01-16 16:38:13 2475968 ----a-w- C:\Windows\system32\nvsvc64.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 81856 ----a-w- C:\Windows\system32\nv3dappshextr.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 69568 ----a-w- C:\Windows\system32\nvshext.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 548408 ----a-w- C:\Windows\system32\nv3dappshext.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 392128 ----a-w- C:\Windows\system32\nvmctray.dll
2016-10-25 20:17:51 . 2016-01-16 16:38:13 1764408 ----a-w- C:\Windows\system32\nvsvcr.dll
2016-10-24 06:31:48 . 2016-01-16 16:38:13 7507695 ----a-w- C:\Windows\system32\nvcoproc.bin
2016-10-21 13:24:39 . 2016-01-16 12:44:25 97856 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2016-10-19 22:48:22 . 2016-07-07 11:37:04 1595456 ----a-w- C:\Windows\system32\nvhdagenco6420103.dll
2016-09-17 00:46:09 . 2016-10-02 14:21:57 1922616 ----a-w- C:\Windows\system32\nvdispco6437290.dll
2016-09-17 00:46:09 . 2016-10-02 14:21:57 1585088 ----a-w- C:\Windows\system32\nvdispgenco6437290.dll
2016-09-09 18:25:58 . 2016-09-09 18:25:58 269600 ----a-w- C:\Windows\SysWow64\vulkan-1-1-0-26-0.dll
2016-09-09 18:25:28 . 2016-09-09 18:25:28 110880 ----a-w- C:\Windows\SysWow64\vulkaninfo-1-1-0-26-0.exe
2016-09-09 18:25:10 . 2016-09-09 18:25:10 261920 ----a-w- C:\Windows\system32\vulkan-1-1-0-26-0.dll
2016-09-09 18:24:38 . 2016-09-09 18:24:38 125216 ----a-w- C:\Windows\system32\vulkaninfo-1-1-0-26-0.exe
2016-09-07 20:27:07 . 2016-09-16 14:24:07 137840 ----a-w- C:\Windows\system32\drivers\rzpnk.sys
2016-08-29 10:53:45 . 2015-11-20 11:21:22 263296 ----a-w- C:\Windows\system32\drivers\eamonm.sys
2016-08-29 10:53:45 . 2015-11-20 11:21:22 197288 ----a-w- C:\Windows\system32\drivers\ehdrv.sys
2016-08-29 10:53:45 . 2015-11-20 11:21:22 181416 ----a-w- C:\Windows\system32\drivers\epfwwfpr.sys
2016-08-29 09:22:56 . 2016-08-29 09:22:56 75744 ----a-w- C:\Windows\system32\DriverInstallCA.dll
2016-08-29 09:22:56 . 2016-08-29 09:22:56 251872 ----a-w- C:\Windows\system32\DriverInstallCACMD.exe
2016-08-25 23:28:29 . 2016-09-04 12:13:57 1920960 ----a-w- C:\Windows\system32\nvdispco6437270.dll
2016-08-25 23:28:29 . 2016-09-04 12:13:57 1586744 ----a-w- C:\Windows\system32\nvdispgenco6437270.dll
2016-08-19 08:12:50 . 2016-08-19 08:12:50 15816 ----a-w- C:\Windows\SysWow64\RzStats.IPC.dll
2016-08-13 09:50:30 . 2016-08-13 09:50:30 1700352 ----a-w- C:\Windows\SysWow64\gdiplus.dll
2016-08-13 09:50:30 . 2016-08-13 09:50:30 1060864 ----a-w- C:\Windows\SysWow64\mfc71.dll
2016-08-13 09:47:39 . 2016-08-13 09:47:39 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll
2016-08-11 14:31:06 . 2016-08-27 08:46:07 1922616 ----a-w- C:\Windows\system32\nvdispco6437254.dll
2016-08-11 14:31:06 . 2016-08-27 08:46:07 1586744 ----a-w- C:\Windows\system32\nvdispgenco6437254.dll
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2010-11-21 03:24:51 1475584]
"SteelSeries Engine"="C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe" [2014-10-09 19:44:14 87040]
"DAEMON Tools Lite Automount"="C:\Program Files\DAEMON Tools Lite\DTAgent.exe" [2016-01-15 14:59:14 4177784]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe" [2016-07-13 17:25:16 29494400]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe" [2016-01-15 20:43:14 8619224]
"uTorrent"="C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe" [2016-10-15 15:43:29 1977536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema 2"="C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" [2014-05-29 14:52:56 1442304]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-05-04 15:31:38 630912]
"Super Charger"="C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe" [2014-07-22 16:18:10 1014736]
"VICTORY Gaming Keyboard"="C:\Program Files (x86)\Gaming Keyboard\Monitor.exe" [2013-11-11 14:38:56 270336]
"Razer Synapse"="C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" [2016-08-22 08:20:52 596640]
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [2016-09-22 18:00:28 587288]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Killer Network Manager.lnk - C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe -minimize [2015-2-5 330240]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sh4native Sh4Removal
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"UpdReg"=C:\Windows\UpdReg.EXE
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe;C:\Program Files (x86)\Skype\Updater\Updater.exe [x]
R3 dmvsc;dmvsc;C:\Windows\system32\drivers\dmvsc.sys;C:\Windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 esgiguard;esgiguard;C:\Users\Michal\AppData\Local\Temp\RarSFX1\esgiguard.sys;C:\Users\Michal\AppData\Local\Temp\RarSFX1\esgiguard.sys [x]
R3 MSICDSetup;MSICDSetup;D:\CDriver64.sys;D:\CDriver64.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;D:\NTIOLib_X64.sys;D:\NTIOLib_X64.sys [x]
R3 NvContainerNetworkService;NVIDIA NetworkService Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
R3 NvStreamKms;NVIDIA KMS;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys;C:\Windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssdevfactory;SteelSeries Device Factory Service;C:\Windows\system32\DRIVERS\ssdevfactory.sys;C:\Windows\SYSNATIVE\DRIVERS\ssdevfactory.sys [x]
R3 Synth3dVsc;Synth3dVsc;C:\Windows\system32\drivers\synth3dvsc.sys;C:\Windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\system32\drivers\terminpt.sys;C:\Windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys;C:\Windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys;C:\Windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;C:\Windows\system32\drivers\tsusbhub.sys;C:\Windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;C:\Windows\system32\drivers\rdvgkmd.sys;C:\Windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
S0 amd_sata;amd_sata;C:\Windows\system32\DRIVERS\amd_sata.sys;C:\Windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;C:\Windows\system32\DRIVERS\amd_xata.sys;C:\Windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S1 BfLwf;Killer Bandwidth Control;C:\Windows\system32\DRIVERS\bflwfx64.sys;C:\Windows\SYSNATIVE\DRIVERS\bflwfx64.sys [x]
S1 eamonm;eamonm;C:\Windows\system32\DRIVERS\eamonm.sys;C:\Windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;C:\Windows\system32\DRIVERS\ehdrv.sys;C:\Windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.1;AODDriver4.1;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe;C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;C:\Windows\system32\DRIVERS\epfwwfpr.sys;C:\Windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 Killer Service V2;Killer Service V2;C:\Program Files\Killer Networking\Network Manager\KillerService.exe;C:\Program Files\Killer Networking\Network Manager\KillerService.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe;C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [x]
S2 NvContainerLocalSystem;NVIDIA LocalSystem Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
S2 NVIDIA Wireless Controller Service;NVIDIA Wireless Controller Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [x]
S2 Razer Game Scanner Service;Razer Game Scanner;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
S2 rzpmgrk;rzpmgrk;C:\Windows\system32\drivers\rzpmgrk.sys;C:\Windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
S2 rzpnk;rzpnk;C:\Windows\system32\drivers\rzpnk.sys;C:\Windows\SYSNATIVE\drivers\rzpnk.sys [x]
S2 RzSurroundVADStreamingService;RzSurroundVADStreamingService;C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe;C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [x]
S2 STCServ;Intel(R) Common Connectivity Framework;C:\Program Files\Intel\STCServ\STCServ.exe;C:\Program Files\Intel\STCServ\STCServ.exe [x]
S3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys;C:\Windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AsusVBus;AsusVBus;C:\Windows\system32\DRIVERS\AsusVBus.sys;C:\Windows\SYSNATIVE\DRIVERS\AsusVBus.sys [x]
S3 ATP;ASUS Touchpad;C:\Windows\system32\DRIVERS\AsusTP.sys;C:\Windows\SYSNATIVE\DRIVERS\AsusTP.sys [x]
S3 busenum;SteelBusSvc;C:\Windows\system32\DRIVERS\SteelBus64.sys;C:\Windows\SYSNATIVE\DRIVERS\SteelBus64.sys [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe;C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;C:\Windows\system32\DRIVERS\dtlitescsibus.sys;C:\Windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;C:\Windows\system32\DRIVERS\dtliteusbbus.sys;C:\Windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 Ke2200;NDIS Miniport Driver for Killer e2201/e2202 PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\e22w7x64.sys;C:\Windows\SYSNATIVE\DRIVERS\e22w7x64.sys [x]
S3 MBfilt;MBfilt;C:\Windows\system32\drivers\MBfilt64.sys;C:\Windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys;C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\system32\drivers\nvvad64v.sys;C:\Windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTCore64;RTCore64;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [x]
S3 RZSURROUNDVADService;Razer Surround Audio Service;C:\Windows\system32\drivers\RzSurroundVAD.sys;C:\Windows\SYSNATIVE\drivers\RzSurroundVAD.sys [x]
S3 SAlphamHid;SteelHIDSvc;C:\Windows\system32\DRIVERS\SAlpham64.sys;C:\Windows\SYSNATIVE\DRIVERS\SAlpham64.sys [x]
S3 usbfilter;AMD USB Filter Driver;C:\Windows\system32\DRIVERS\usbfilter.sys;C:\Windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VUSB3HUB;VIA USB 3 Root Hub Service;C:\Windows\system32\DRIVERS\ViaHub3.sys;C:\Windows\SYSNATIVE\DRIVERS\ViaHub3.sys [x]
S3 xhcdrv;VIA USB eXtensible Host Controller Service;C:\Windows\system32\DRIVERS\xhcdrv.sys;C:\Windows\SYSNATIVE\DRIVERS\xhcdrv.sys [x]
--- Other Services/Drivers In Memory ---
*NewlyCreated* - NTIOLIB_1_0_3
Contents of the 'Scheduled Tasks' folder
2016-11-04 C:\Windows\Tasks\Adobe Flash Player Updater.job
- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-16 15:11:21 . 2016-10-26 18:39:42]
2016-11-04 C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-23 19:20:07 . 2016-04-23 19:20:07]
2016-11-04 C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-23 19:20:07 . 2016-04-23 19:20:07]
--------- X64 Entries -----------
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VIAxHCUtl"="C:\Program Files\VIA XHCI UASP Utility\usb3Monitor" [X]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" [2015-03-12 07:04:46 8463064]
"MBCfg64"="C:\Windows\system32\MBCfg64.dll" [2014-02-21 09:57:40 41088]
"ShadowPlay"="C:\Windows\system32\nvspcap64.dll" [2016-10-25 20:18:30 1854008]
"IntelConnectCenter"="C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe" [2015-03-16 11:19:16 90112]
------- Supplementary Scan -------
uLocal Page = C:\Windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = C:\Windows\SysWOW64\blank.htm
Trusted Zone: eset.com\help
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\xv0j38tt.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
- - - - ORPHANS REMOVED - - - -
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Vopred ďakujem za pomoc