Prosím o preventivní kontrolu.

[nemo11]

Dobrý den, prosil bych o preventivku, nedávno jsem aktualizoval Norton Internet Security a stává se, že při prověřování PC občas Norton vytuhne a je nutné ho ukonči. Den dozadu se stáhl přes aktualizace hotfix, ale netuším, zdali řeší tohle, no prozatím to vypadá dobře.

Přikládám log
Logfile of random's system information tool 1.09 (written by random/random)
Run by SEETH at 2013-11-02 22:27:05
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 2 GB (3%) free of 58 GB
Total RAM: 4096 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:27:07, on 2.11.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal

Running processes:
D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
D:\PROGRAMY\iTUNES\iTunesHelper.exe
C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe
D:\PROGRAMY\G15_TeamSpeak\G15_TeamSpeak.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\SEETH.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\coIEPlg.dll
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "D:\PROGRAMY\iTUNES\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Saitek DirectOutput (SaiDOutput) - Saitek - C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8566 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9e584331-9f9a-4aeb-9ccc-1e765ad35ce5 -SystemEventPortName:HostProcess-3e696e84-baab-4709-ab75-e29552b1c5ab -IoCancelEventPortName:HostProcess-b24a8c17-d514-4304-b292-0a48bf1991a7 -NonStateChangingEventPortName:HostProcess-a83fe1cc-32a2-4dc3-a753-879f88fe1d2f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d7a48052-4f95-401d-bc42-890ee853b69e -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9b085656-e953-4dd4-8ac5-9397089e469a -SystemEventPortName:HostProcess-3f76bc14-f238-425f-9fd2-7ebd21eadbf2 -IoCancelEventPortName:HostProcess-5277bc10-e6a0-40fb-a9a6-9008244affea -NonStateChangingEventPortName:HostProcess-36e2d433-1bc7-4654-9fdb-e893cd79cae2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d6169378-e717-4ad9-8481-475e0bf26120 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-195628fc-208d-4662-8b9e-6525545e7d2a -SystemEventPortName:HostProcess-6544ed03-f0b7-4aba-9ed7-6146b556ca0a -IoCancelEventPortName:HostProcess-734a6635-0450-4abd-b265-5c012c2350e0 -NonStateChangingEventPortName:HostProcess-183a4172-1c8d-479e-b08d-c8ef2e7fca78 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4dc60668-1d69-46ed-be27-d723bf0fa212 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2948112a-d59e-427d-bd5a-1626af799145 -SystemEventPortName:HostProcess-0ee5f2e7-36fb-42a4-8892-29b1d0e67b40 -IoCancelEventPortName:HostProcess-a3424bfb-4ed2-49ef-afe0-00d1186d9735 -NonStateChangingEventPortName:HostProcess-d5aca7c9-a5a5-4b2f-ba09-7c2bddc3c5a4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2e0c4464-12fa-4c4e-b4ba-583f5193001c -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 956
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe" /s "NIS" /m "D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\diMaster.dll" /prefetch:1
"taskhost.exe"
"D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe" /c /a /s UserSession
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe"
"C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
"C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
"C:\Program Files\Saitek\SD6\Software\ProfilerU.exe"
"C:\Program Files\Saitek\SD6\Software\SaiMfd.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"D:\PROGRAMY\iTUNES\iTunesHelper.exe"
"C:\Program Files\Logitech\GamePanel Software\Applets\LCDCountdown.exe"
"C:\Program Files\Logitech\GamePanel Software\Applets\LCDPop3.exe"
"C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe"
"C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe"
"D:\PROGRAMY\G15_TeamSpeak\G15_TeamSpeak.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Windows Media Player\WMPSideShowGadget.exe"
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /SkipFUE /RemoteOCXLaunch
"taskhost.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4396.0.122919749\1869424495" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x1200 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3165 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="4396.1.1063518910\1156806155" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4396.2.2037950777\1136411731" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4396.3.471916555\1258899072" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4396.4.65865319\333254700" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4396.5.1514547015\1101825314" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\SEETH\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2014.6.0.27_0\npcoplgn.dll" --lang=cs --channel="4396.6.1607684583\1418672876" /prefetch:-390060480
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4396.7.738795515\492670106" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"D:\Stažené soubory\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\SEETH\AppData\Roaming\Mozilla\Firefox\Profiles\wt2dwkkx.default

prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
prefs.js - "extensions.enabledItems" - "{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=D:\PROGRAMY\iTUNES\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.3.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=D:\PROGRAMY\Adobe rider\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

D:\PROGRAMY\Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

D:\PROGRAMY\Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

D:\PROGRAMY\Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

D:\PROGRAMY\Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\SEETH\AppData\Roaming\Mozilla\Firefox\Profiles\wt2dwkkx.default\extensions\
cs@dictionaries.addons.mozilla.org
{e001c731-5e37-4538-a5cb-8168736a2360}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - D:\PROGRAMY\NortonInternetSecurity2012\Engine64\21.1.0.18\coIEPlg.dll [2013-10-06 769360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\coIEPlg.dll [2013-10-06 526672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\IPS\IPSBHO.DLL [2013-09-29 388504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - D:\PROGRAMY\NortonInternetSecurity2012\Engine64\21.1.0.18\coIEPlg.dll [2013-10-06 769360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\coIEPlg.dll [2013-10-06 526672]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-12-08 9642528]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2009-09-16 190472]
"Launch LgDeviceAgent"=C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [2010-08-03 415816]
"Launch LCDMon"=C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2010-08-03 2412616]
"Launch LGDCore"=C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [2010-08-03 4725320]
"ProfilerU"=C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [2010-07-29 310272]
"SaiMfd"=C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [2010-07-29 158208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"iTunesHelper"=D:\PROGRAMY\iTUNES\iTunesHelper.exe [2013-10-23 152392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x00000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux1"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-11-02 22:25:06 ----D---- C:\rsit
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\nvopencl.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\nvoglv64.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\nvoglshim64.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\nvhdagenco64.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvinitx.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\NvIFR64.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\NvFBC64.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvdispgenco6433165.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvdispco6433165.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvcuvid.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvcuda.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvcompiler.dll
2013-10-26 21:00:02 ----D---- C:\Program Files\iPod
2013-10-26 20:59:59 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-26 20:59:59 ----D---- C:\Program Files\iTunes
2013-10-26 17:08:12 ----HD---- C:\SkyDriveTemp
2013-10-24 21:45:06 ----D---- C:\AdwCleaner
2013-10-24 13:17:28 ----A---- C:\Windows\system32\nvdispgenco6433158.dll
2013-10-24 13:17:28 ----A---- C:\Windows\system32\nvdispco6433158.dll
2013-10-23 03:02:36 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-10-16 15:02:17 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-10-16 15:02:11 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-10-16 15:02:11 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-10-16 15:02:11 ----A---- C:\Windows\SYSWOW64\java.exe
2013-10-09 23:15:00 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 23:14:59 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 23:14:58 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 23:14:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 23:14:57 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 23:14:56 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 23:14:56 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 23:14:56 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 23:14:55 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 23:14:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 23:14:54 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 23:14:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 23:14:53 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 23:14:53 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 23:14:52 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 23:14:52 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 23:14:51 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 23:14:49 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 23:14:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 12:35:39 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 12:35:39 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 12:35:37 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 12:35:35 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 12:35:35 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 12:35:35 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 12:35:35 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 12:35:34 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 12:35:34 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 12:35:34 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 12:35:34 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 12:35:34 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 12:35:32 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 12:35:32 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 12:35:32 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 12:35:32 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 12:35:32 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 12:35:31 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 12:35:31 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 12:35:28 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 12:35:28 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 12:35:28 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-08 21:50:17 ----A---- C:\Windows\system32\nvdispgenco6433140.dll
2013-10-08 21:50:17 ----A---- C:\Windows\system32\nvdispco6433140.dll
2013-10-08 21:08:31 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-10-08 21:07:57 ----D---- C:\ProgramData\Package Cache

======List of files/folders modified in the last 1 month======

2013-11-02 22:27:06 ----D---- C:\Program Files\trend micro
2013-11-02 22:26:56 ----D---- C:\Windows\Prefetch
2013-11-02 22:06:05 ----SD---- C:\Users\SEETH\AppData\Roaming\Microsoft
2013-11-02 19:25:18 ----D---- C:\Windows\Temp
2013-11-02 17:58:42 ----D---- C:\Windows\system32\config
2013-11-02 17:51:01 ----D---- C:\Windows\System32
2013-11-02 17:51:01 ----D---- C:\Windows\inf
2013-11-02 17:51:01 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-02 17:44:40 ----SHD---- C:\System Volume Information
2013-11-02 17:44:05 ----D---- C:\ProgramData\NVIDIA
2013-10-29 14:42:03 ----D---- C:\Windows
2013-10-28 19:25:51 ----D---- C:\Windows\SysWOW64
2013-10-28 19:25:51 ----D---- C:\Windows\system32\drivers
2013-10-28 19:25:50 ----D---- C:\Windows\system32\DriverStore
2013-10-28 19:25:50 ----D---- C:\Windows\system32\catroot
2013-10-28 19:25:49 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-28 19:25:49 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-10-28 19:25:48 ----RD---- C:\Users
2013-10-28 19:25:43 ----D---- C:\ProgramData\NVIDIA Corporation
2013-10-28 19:25:42 ----RSD---- C:\Windows\assembly
2013-10-28 18:57:02 ----D---- C:\Windows\system32\catroot2
2013-10-26 21:01:06 ----SHD---- C:\Windows\Installer
2013-10-26 21:00:02 ----RD---- C:\Program Files
2013-10-26 20:59:59 ----HD---- C:\ProgramData
2013-10-25 22:27:44 ----D---- C:\Users\SEETH\AppData\Roaming\vlc
2013-10-23 11:30:23 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\OpenCL.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\nvumdshimx.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\nvapi64.dll
2013-10-23 09:20:08 ----A---- C:\Windows\system32\nvcpl.dll
2013-10-23 09:20:07 ----A---- C:\Windows\system32\nvsvc64.dll
2013-10-23 09:20:05 ----A---- C:\Windows\system32\nvvsvc.exe
2013-10-23 09:20:05 ----A---- C:\Windows\system32\nvsvcr.dll
2013-10-23 09:20:05 ----A---- C:\Windows\system32\nvshext.dll
2013-10-23 09:20:05 ----A---- C:\Windows\system32\nvmctray.dll
2013-10-21 19:12:16 ----D---- C:\ProgramData\Norton
2013-10-21 19:12:05 ----D---- C:\Windows\system32\Tasks
2013-10-21 19:11:43 ----D---- C:\Windows\system32\drivers\NISx64
2013-10-16 22:40:48 ----D---- C:\Windows\Panther
2013-10-16 22:40:48 ----D---- C:\Windows\debug
2013-10-16 15:02:22 ----D---- C:\ProgramData\Oracle
2013-10-16 15:02:11 ----D---- C:\Program Files (x86)\Java
2013-10-15 19:53:06 ----D---- C:\Windows\system32\NDF
2013-10-15 16:28:45 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-13 16:03:27 ----D---- C:\Windows\rescache
2013-10-11 20:18:29 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-10 14:56:00 ----D---- C:\Windows\Microsoft.NET
2013-10-10 11:28:24 ----D---- C:\Windows\winsxs
2013-10-10 11:25:49 ----D---- C:\Program Files\Internet Explorer
2013-10-10 11:25:49 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-10 11:25:47 ----D---- C:\Windows\system32\cs-CZ
2013-10-10 11:25:47 ----D---- C:\Windows\AppPatch
2013-10-10 11:25:02 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-10 11:25:02 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 23:12:42 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-09 23:06:17 ----D---- C:\Windows\system32\MRT
2013-10-09 23:04:36 ----A---- C:\Windows\system32\MRT.exe
2013-10-09 22:56:47 ----D---- C:\Windows\Logs
2013-10-09 19:06:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-10-09 12:14:51 ----RD---- C:\Program Files (x86)
2013-10-09 12:14:50 ----D---- C:\Windows\Tasks
2013-10-08 22:56:58 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-08 21:16:24 ----D---- C:\ProgramData\Origin
2013-10-07 12:28:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-07 12:26:29 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-07 12:26:29 ----D---- C:\Windows\system32\en-US

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-11-12 530488]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS [2013-09-10 493656]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS [2013-09-27 1147480]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AmgHips;AmgHips; \??\C:\Windows\System32\Drivers\AmgHips.sys [2011-11-01 31008]
R1 BHDrvx64;BHDrvx64; \??\D:\PROGRAMY\NortonInternetSecurity2012\NortonData\21.1.0.18\Definitions\BASHDefs\20131022.001\BHDrvx64.sys [2013-10-23 1524824]
R1 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys [2013-09-26 162392]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2013-10-21 484952]
R1 IDSVia64;IDSVia64; \??\D:\PROGRAMY\NortonInternetSecurity2012\NortonData\21.1.0.18\Definitions\IPSDefs\20131101.001\IDSvia64.sys [2013-10-28 521816]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS [2013-09-10 36952]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS [2013-09-27 264280]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1501000.012\SYMNETS.SYS [2013-09-26 590936]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-10-23 140376]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-12-08 2223392]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-23 22408]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-23 16008]
R3 NAVENG;NAVENG; \??\D:\PROGRAMY\NortonInternetSecurity2012\NortonData\21.1.0.18\Definitions\VirusDefs\20131101.018\ENG64.SYS [2013-11-01 126040]
R3 NAVEX15;NAVEX15; \??\D:\PROGRAMY\NortonInternetSecurity2012\NortonData\21.1.0.18\Definitions\VirusDefs\20131101.018\EX64.SYS [2013-11-01 2099288]
R3 npusbio;npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [2012-07-09 38400]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-06-16 196384]
R3 SaiMini;SaiMini; C:\Windows\system32\DRIVERS\SaiMini.sys [2010-08-10 22792]
R3 SaiNtBus;SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [2010-08-10 50056]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1501000.012\SRTSP64.SYS [2013-09-27 858200]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2013-10-21 177752]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2009-09-11 26248]
R3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2009-09-11 15880]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2009-09-11 76552]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2010-12-21 36328]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2010-09-15 20552]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-11-10 56336]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-11-10 58384]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 SaiH0762;SaiH0762; C:\Windows\system32\DRIVERS\SaiH0762.sys [2008-04-04 178560]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-06-02 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-06-02 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-06-02 177640]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-12-21 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-12-21 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-12-21 172104]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2011-01-04 16392]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2009-09-11 41096]
S3 WmHidLo;Logitech Gaming USB Filter Driver; C:\Windows\system32\drivers\WmHidLo.sys [2009-09-11 36872]
S4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NIS;Norton Internet Security; D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe [2013-10-08 275696]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-23 922912]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-08 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-10-23 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-06-18 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-05-15 1044816]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-06-18 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SaiDOutput;Saitek DirectOutput; C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe [2008-04-04 241152]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-30 566696]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-09 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Márty84]

Zdravim

Zase mate malo mista na disku


Zkuste spustit MBAM, schvalne jestli vytuhne.

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce


Je jinak s pc nejaky problem?

[nemo11]

Ani ne tak zase, jako spíš furt ho mám málo. Plácnu se přes prsty a ve Wordu stokrát napíši „Již nikdy nebudu tak blbě rozdělovat disk.“ Stáhl jsem na to nějaký program, tak to zkusím napravit. Provedl jsem test MBAM a vše proběhlo v pořádku. PC se chová normálně, nepozoruji žádné problémy. Jinak z minulou verzí Nortonu problém nebyl. Mám ještě takový zbytečný dotaz, používám toolbar od Nortonu protože tam je to jejich úložiště hesel, předpokládám že to je šifrované že?

Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org

Verze: v2013.11.03.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
SEETH :: SEETH-PC [administrátor]

3.11.2013 10:01:05
mbam-log-2013-11-03 (10-01-05).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 678241
Uplynulý čas: 1 hodin, 55 minut, 45 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[Márty84]

No jako on neni rozdeleny az tak blbe, mista je tam dost, jen musite presunout par veci, ktere nemusi byt na Cecku.
Nevim, nepouzivam to. Ale meli by to mit nejak zabezpecene.


MBAM muzete odinstalovat


Vypnete antivir, at nebrani programu v praci.
Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe a ulozte nejlepe na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]

:services
gupdate
AdobeFlashPlayerUpdateSvc
gupdatem

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

Kliknete na MoveIt a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)

[nemo11]

No to já se snažil co nejvíc toho z C: odstranit a nic tam neinstaluji, krom věcí u kterých nelze zvolit jinak.
Zde je log
All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: SEETH
->Temp folder emptied: 819095 bytes
->Temporary Internet Files folder emptied: 18336842 bytes
->Java cache emptied: 150473 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 239784313 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 877 bytes

User: TEMP

User: UpdatusUser
->Temp folder emptied: 0 bytes

User: UpdatusUser.SEETH-PC
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2432 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 247,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: SEETH
->Flash cache emptied: 0 bytes

User: TEMP

User: UpdatusUser

User: UpdatusUser.SEETH-PC

Total Flash Files Cleaned = 0,00 mb

Error creating restore point.
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.

OTM by OldTimer - Version 3.1.21.0 log created on 11032013_174627

Files moved on Reboot...
C:\Users\SEETH\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Users\SEETH\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[Márty84]

Znovu spustte OTM jako spravce a kliknete na CleanUp! Program po sobe uklidi.

Jinak to vypada ciste, takze pokud nejsou zadne problemy, neni treba do toho stourat

Zkuste Cecko defragmentovat, nekdy to nejake misto uvolni.

[nemo11]

Počítač se tváří že je ok. Na defragmentaci používám Defraggler, ale tomu se to taky nelibí, že mám tak málo místa na C. V každém případě jako vždy moc děkuji za pomoc.

[Márty84]

Ja vim, on potrebuje aspon 5% nebo 10% volneho mista, aby to udelal poradne Zkuste vymazat body obnovy, to by mohlo alespon docasne misto zvysit a defragmentace by mohla probehnout korektne.

Nemate zac!

Mejte se a treba zase nekdy