Heloo there!
When accesing folder in which photos are stored performance go low, no CPU/memory usage goes up but it fails to answer. Sth like freezes but for no reason. Also long time when booting/closing system.
1) comodo scan done
2)
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Wersja bazy: v2014.03.02.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16798
kom :: KOM-KOMPUTER [administrator]
2014-03-03 00:20:55
mbam-log-2014-03-03 (00-20-55).txt
Typ skanowania: Szybkie skanowanie
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 211662
Upłynęło: 8 minut(y), 29 sekund(y)
Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)
Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)
Wykrytych kluczy rejestru: 0
(Nie znaleziono zagrożeń)
Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)
Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)
wykrytych folderów: 0
(Nie znaleziono zagrożeń)
Wykrytych plików: 0
(Nie znaleziono zagrożeń)
(zakończone)
3) DDS
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16798 BrowserJavaVersion: 10.51.2
Run by kom at 0:31:52 on 2014-03-03
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.48.1045.18.3957.1690 [GMT 1:00]
.
AV: COMODO Antivirus *Enabled/Updated* {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: COMODO Antivirus *Enabled/Updated* {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall *Enabled* {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\WLANExt.exe
C:\windows\System32\spoolsv.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\windows\system32\nvvsvc.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\Dwm.exe
C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
C:\windows\Explorer.EXE
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\windows\system32\rundll32.exe
C:\windows\SysWOW64\PnkBstrA.exe
C:\windows\SysWOW64\Rezip.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\windows\system32\RunDll32.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\finalizesetup.exe
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedadssvc.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\windows\system32\wuauclt.exe
C:\windows\servicing\TrustedInstaller.exe
C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\DFDWiz.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\vssvc.exe
C:\windows\System32\svchost.exe -k swprv
C:\windows\system32\taskeng.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://mystart.incredibar.com/mb201?a=6R8S7V1fp4&I=26
uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: IplexToALLPlayer: {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll
BHO: PrivDog Extension: {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe
uRun: [Google Update] "C:\Users\kom\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [NortonOnlineBackup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [ComodoFSChrome] "C:\Program Files (x86)\AdTrustMedia\PrivDog\FinalizeSetup.exe" /c
mRun: [PrivDogService] "C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedadssvc.exe"
dRunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
StartupFolder: C:\Users\kom\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\POWIAD~1.LNK - C:\windows\System32\RunDll32.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\CODECP~1.LNK - C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {2F5C139F-79BD-4C84-A95A-E7140525BC55} - {5B06364D-FF00-4BD5-9D01-4379952513F2} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: NameServer = 62.179.1.62 62.179.1.63
TCP: Interfaces\{3A3C3A3A-9C10-4C7D-B984-D0238A8EFB46} : NameServer = 156.154.70.25,156.154.71.25
TCP: Interfaces\{3A3C3A3A-9C10-4C7D-B984-D0238A8EFB46} : DHCPNameServer = 62.179.1.62 62.179.1.63
TCP: Interfaces\{3A3C3A3A-9C10-4C7D-B984-D0238A8EFB46}\64F4E4F5E454459414F564255454F594E4455425E45445 : DHCPNameServer = 192.168.3.254
TCP: Interfaces\{3A3C3A3A-9C10-4C7D-B984-D0238A8EFB46}\E4544594143505F445D2935373034403 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{B0E599D8-A3B7-4684-8ABE-EA0ECCD15C2E} : NameServer = 156.154.70.25,156.154.71.25
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
x64-mWinlogon: Userinit = C:\windows\System32\userinit.exe
x64-BHO: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - <orphaned>
x64-BHO: PrivDog Extension: {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
x64-Run: [ShadowPlay] C:\windows\System32\rundll32.exe C:\windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
x64-IE: {2F5C139F-79BD-4C84-A95A-E7140525BC55} - {5B06364D-FF00-4BD5-9D01-4379952513F2} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\windows\System32\drivers\cmdguard.sys [2013-11-14 709144]
R1 cmdHlp;COMODO Internet Security Helper Driver;C:\windows\System32\drivers\cmdhlp.sys [2013-9-24 48872]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\windows\System32\drivers\dtsoftbus01.sys [2013-1-22 283200]
R1 SABI;SAMSUNG Kernel Driver For Windows 7;C:\windows\System32\drivers\SABI.sys [2010-6-8 13824]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-5 418376]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-3-1 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-25 15129376]
R2 Rezip;Rezip;C:\Windows\SysWOW64\Rezip.exe [2010-6-8 311296]
R2 TurboB;Turbo Boost UI Monitor driver;C:\windows\System32\drivers\TurboB.sys [2009-11-2 13784]
R3 btwampfl;Bluetooth AMP USB Filter;C:\windows\System32\drivers\btwampfl.sys [2012-8-1 335400]
R3 btwl2cap;Bluetooth L2CAP Service;C:\windows\System32\drivers\btwl2cap.sys [2012-8-1 39464]
R3 Impcd;Impcd;C:\windows\System32\drivers\Impcd.sys [2010-6-9 158976]
R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2014-1-5 25928]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\windows\System32\drivers\nvvad64v.sys [2014-3-1 39200]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\windows\System32\drivers\yk62x64.sys [2009-9-28 395264]
S1 cmderd;COMODO Internet Security Eradication Driver;C:\windows\System32\drivers\cmderd.sys [2013-9-24 23168]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-5 701512]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
S3 cmdvirth;COMODO Virtual Service Manager;C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2013-9-24 164056]
S3 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe service --> C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe service [?]
S3 pbfilter;pbfilter;C:\Program Files\PeerBlock\pbfilter.sys [2014-1-23 22600]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2013-11-27 19456]
S3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2009-6-10 187392]
S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-3-13 155320]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2013-11-27 57856]
S3 TurboBoost;TurboBoost;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-2 126352]
S3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;C:\windows\System32\Wat\WatAdminSvc.exe [2012-11-7 1255736]
.
=============== File Associations ===============
.
ShellExec: SC2Editor.exe: open="D:/Gry/StarCraft II/Support/SC2Editor.exe" "%1"
ShellExec: SC2Switcher.exe: open="D:/Gry/StarCraft II/Support/SC2Switcher.exe" "%1"
.
=============== Created Last 30 ================
.
2014-03-02 22:42:33 -------- d-----w- C:\Users\kom\AppData\Local\ElevatedDiagnostics
2014-03-02 22:40:28 -------- d-s---w- C:\ProgramData\Shared Space
2014-03-02 22:40:17 -------- d-----w- C:\Program Files\COMODO
2014-03-02 22:40:03 -------- d-----w- C:\ProgramData\Comodo
2014-03-02 22:39:58 -------- d-----w- C:\Program Files\AdTrustMedia
2014-03-02 22:39:58 -------- d-----w- C:\Program Files (x86)\AdTrustMedia
2014-03-02 22:39:57 -------- d-----w- C:\ProgramData\Adtrustmedia
2014-03-02 22:39:52 -------- d-----w- C:\ProgramData\Comodo Downloader
2014-03-01 23:14:19 923936 ----a-w- C:\windows\System32\nvvsvc.exe
2014-03-01 23:14:19 6712608 ----a-w- C:\windows\System32\nvcpl.dll
2014-03-01 23:14:19 63776 ----a-w- C:\windows\System32\nvshext.dll
2014-03-01 23:14:19 386336 ----a-w- C:\windows\System32\nvmctray.dll
2014-03-01 23:14:19 3498272 ----a-w- C:\windows\System32\nvsvc64.dll
2014-03-01 23:14:19 2559776 ----a-w- C:\windows\System32\nvsvcr.dll
2014-03-01 23:13:44 61216 ----a-w- C:\windows\System32\OpenCL.dll
2014-03-01 23:13:44 53024 ----a-w- C:\windows\SysWow64\OpenCL.dll
2014-03-01 22:59:22 -------- d-----w- C:\Users\kom\AppData\Local\NVIDIA Corporation
2014-03-01 22:58:27 39200 ----a-w- C:\windows\System32\drivers\nvvad64v.sys
2014-03-01 22:58:27 32544 ----a-w- C:\windows\SysWow64\nvaudcap32v.dll
2014-03-01 19:48:36 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{36BEF824-39B8-4909-AFB3-A545DFEF5E7B}\offreg.dll
2014-03-01 19:48:07 -------- d-s---w- C:\windows\SysWow64\Microsoft
2014-02-28 09:34:54 10536864 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{36BEF824-39B8-4909-AFB3-A545DFEF5E7B}\mpengine.dll
2014-02-15 11:45:09 600064 ----a-w- C:\windows\System32\vbscript.dll
2014-02-15 11:45:08 523776 ----a-w- C:\windows\SysWow64\vbscript.dll
2014-02-14 10:41:31 658432 ----a-w- C:\windows\System32\RMActivate_isv.exe
2014-02-14 10:40:38 1882112 ----a-w- C:\windows\System32\msxml3.dll
2014-02-14 10:40:37 1237504 ----a-w- C:\windows\SysWow64\msxml3.dll
2014-02-14 10:40:36 2048 ----a-w- C:\windows\SysWow64\msxml3r.dll
2014-02-14 10:40:36 2048 ----a-w- C:\windows\System32\msxml3r.dll
2014-02-14 10:40:35 2565120 ----a-w- C:\windows\System32\d3d10warp.dll
2014-02-14 10:40:35 1987584 ----a-w- C:\windows\SysWow64\d3d10warp.dll
2014-02-14 10:40:32 3928064 ----a-w- C:\windows\System32\d2d1.dll
2014-02-14 10:40:31 3419136 ----a-w- C:\windows\SysWow64\d2d1.dll
.
==================== Find3M ====================
.
2014-03-02 09:30:08 89600 ----a-w- C:\windows\SysWow64\wbem\WmiApRpl.dll
2014-03-02 09:26:21 137728 ----a-w- C:\windows\System32\wbem\WmiApRpl.dll
2014-02-11 22:55:37 290184 ----a-w- C:\windows\SysWow64\PnkBstrB.xtr
2014-02-11 22:55:37 290184 ----a-w- C:\windows\SysWow64\PnkBstrB.exe
2014-02-01 09:19:49 2241536 ----a-w- C:\windows\System32\wininet.dll
2014-02-01 09:18:25 3960320 ----a-w- C:\windows\System32\jscript9.dll
2014-02-01 09:18:21 67072 ----a-w- C:\windows\System32\iesetup.dll
2014-02-01 09:18:21 136704 ----a-w- C:\windows\System32\iesysprep.dll
2014-02-01 07:58:31 1767936 ----a-w- C:\windows\SysWow64\wininet.dll
2014-02-01 07:57:20 2877952 ----a-w- C:\windows\SysWow64\jscript9.dll
2014-02-01 07:57:16 61440 ----a-w- C:\windows\SysWow64\iesetup.dll
2014-02-01 07:57:16 109056 ----a-w- C:\windows\SysWow64\iesysprep.dll
2014-02-01 07:40:43 2706432 ----a-w- C:\windows\System32\mshtml.tlb
2014-02-01 07:34:53 2706432 ----a-w- C:\windows\SysWow64\mshtml.tlb
2014-02-01 06:45:40 89600 ----a-w- C:\windows\System32\RegisterIEPKEYs.exe
2014-02-01 06:38:03 71680 ----a-w- C:\windows\SysWow64\RegisterIEPKEYs.exe
2013-12-18 20:09:39 96168 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-12-18 05:13:56 270496 ------w- C:\windows\System32\MpSigStub.exe
2013-12-14 22:11:04 290184 ----a-w- C:\windows\SysWow64\PnkBstrB.ex0
2013-12-10 02:13:11 982232 ----a-w- C:\windows\SysWow64\nvspcap.dll
2013-12-10 02:13:01 1100248 ----a-w- C:\windows\System32\nvspcap64.dll
2013-12-09 00:34:51 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-09 00:34:51 692616 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2013-12-05 08:42:26 35104 ----a-w- C:\windows\System32\nvaudcap64v.dll
2013-12-04 02:27:33 485888 ----a-w- C:\windows\System32\secproc_isv.dll
2013-12-04 02:27:33 123392 ----a-w- C:\windows\System32\secproc_ssp_isv.dll
2013-12-04 02:27:33 123392 ----a-w- C:\windows\System32\secproc_ssp.dll
2013-12-04 02:27:16 488448 ----a-w- C:\windows\System32\secproc.dll
2013-12-04 02:26:32 528384 ----a-w- C:\windows\System32\msdrm.dll
2013-12-04 02:16:51 626176 ----a-w- C:\windows\System32\RMActivate.exe
2013-12-04 02:16:50 552960 ----a-w- C:\windows\System32\RMActivate_ssp_isv.exe
2013-12-04 02:16:48 553984 ----a-w- C:\windows\System32\RMActivate_ssp.exe
2013-12-04 02:03:20 87040 ----a-w- C:\windows\SysWow64\secproc_ssp_isv.dll
2013-12-04 02:03:20 87040 ----a-w- C:\windows\SysWow64\secproc_ssp.dll
2013-12-04 02:03:20 423936 ----a-w- C:\windows\SysWow64\secproc_isv.dll
2013-12-04 02:03:08 428032 ----a-w- C:\windows\SysWow64\secproc.dll
2013-12-04 02:02:06 390144 ----a-w- C:\windows\SysWow64\msdrm.dll
2013-12-04 01:54:14 510976 ----a-w- C:\windows\SysWow64\RMActivate_ssp.exe
2013-12-04 01:54:10 594944 ----a-w- C:\windows\SysWow64\RMActivate_isv.exe
2013-12-04 01:54:09 572416 ----a-w- C:\windows\SysWow64\RMActivate.exe
2013-12-04 01:54:06 508928 ----a-w- C:\windows\SysWow64\RMActivate_ssp_isv.exe
.
============= FINISH: 0:32:54,30 ===============
4)
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 2012-08-01 11:35:09
System Uptime: 2014-03-02 23:19:03 (1 hours ago)
.
Motherboard: SAMSUNG ELECTRONICS CO., LTD. | | R580/R590
Processor: Intel(R) Core(TM) i7 CPU M 620 @ 2.67GHz | CPU 1 | 2667/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 253 GiB total, 145,189 GiB free.
D: is FIXED (NTFS) - 323 GiB total, 265,99 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP159: 2014-03-01 20:47:39 - avast! antivirus system restore point
RP160: 2014-03-01 23:25:06 - Removed XSplit Broadcaster
RP161: 2014-03-01 23:25:54 - Removed Soluto
RP162: 2014-03-01 23:59:27 - Zainstalowany program DirectX
RP163: 2014-03-02 23:40:48 - Instalacja pakietu sterownika urządzenia: COMODO Usługa sieciowa
RP164: 2014-03-02 23:49:45 - Windows Update
.
==== Installed Programs ======================
.
7-Zip 9.20 (x64 edition)
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1 - Polish
Aktualizacje NVIDIA 10.11.15
ALLPlayer V5.X
Atheros Client Installation Program
µTorrent
Banished v1.0.0 64-bit
BatteryLifeExtender
Broadcom 802.11 Network Adapter
Calmer 1.1
CCleaner
ChargeableUSB
Codec Pack - All In 1 6.0.3.0
Cole2k Media - Codec Pack (Advanced) 8.0.2
COMODO Internet Security Premium
Compatibility Pack for the 2007 Office system
CyberLink DVD Suite
CyberLink Power2Go
CyberLink PowerDVD 8
CyberLink YouCam
DAEMON Tools Lite
Easy Display Manager
EasyBatteryManager
GeForce Experience NvStream Client Components
Google Chrome
HP Deskjet 1050 J410 series Pomoc
HP Deskjet 1050 J410 series — badanie mające na celu poprawę produktów
HP Deskjet 1050 J410 series — podstawowe oprogramowanie urządzenia
HP Photo Creations
HP Update
Intel(R) Rapid Storage Technology
Intel(R) Turbo Boost Technology Driver
Intel(R) Turbo Boost Technology Monitor
Java 7 Update 51
Java Auto Updater
Malwarebytes Anti-Malware wersja 1.75.0.1300
Marvell Miniport Driver
Metro: Last Light (c) Deep Silver version 1
Microsoft .NET Framework 4 Client Profile PLK Language Pack
Microsoft .NET Framework 4 Extended PLK Language Pack
Microsoft .NET Framework 4.5.1
Microsoft Office 2010
Microsoft Office Professional Edition 2003
Microsoft PowerPoint Viewer
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
NapiProjekt (2.1.0.2287)
Narzędzie do przekazywania usługi Windows Live
NVIDIA GeForce Experience 1.8.1
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA Oprogramowanie systemu PhysX 9.13.1220
NVIDIA PhysX
NVIDIA ShadowPlay 10.11.15
NVIDIA Sterownik dźwięku HD 1.3.30.1
NVIDIA Sterownik graficzny 334.89
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.19
Origin
Panel sterowania NVIDIA 334.89
PeerBlock 1.2 (r693)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended
Portal
PrivDog
Realtek High Definition Audio Driver
REALTEK Wireless LAN Software
Samsung Recovery Solution 4
Samsung Support Center
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
SHIELD Streaming
Skype™ 5.10
Sony PC Companion 2.10.136
Synaptics Pointing Device Driver
WIDCOMM Bluetooth Software
WinZip
WinZip 17.0
.
==== End Of File ===========================
When accesing folder in which photos are stored performance go low, no CPU/memory usage goes up but it fails to answer. Sth like freezes but for no reason. Also long time when booting/closing system.
1) comodo scan done
2)
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Wersja bazy: v2014.03.02.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16798
kom :: KOM-KOMPUTER [administrator]
2014-03-03 00:20:55
mbam-log-2014-03-03 (00-20-55).txt
Typ skanowania: Szybkie skanowanie
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 211662
Upłynęło: 8 minut(y), 29 sekund(y)
Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)
Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)
Wykrytych kluczy rejestru: 0
(Nie znaleziono zagrożeń)
Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)
Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)
wykrytych folderów: 0
(Nie znaleziono zagrożeń)
Wykrytych plików: 0
(Nie znaleziono zagrożeń)
(zakończone)
3) DDS
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16798 BrowserJavaVersion: 10.51.2
Run by kom at 0:31:52 on 2014-03-03
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.48.1045.18.3957.1690 [GMT 1:00]
.
AV: COMODO Antivirus *Enabled/Updated* {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: COMODO Antivirus *Enabled/Updated* {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall *Enabled* {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\WLANExt.exe
C:\windows\System32\spoolsv.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\windows\system32\nvvsvc.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\Dwm.exe
C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
C:\windows\Explorer.EXE
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\windows\system32\rundll32.exe
C:\windows\SysWOW64\PnkBstrA.exe
C:\windows\SysWOW64\Rezip.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\windows\system32\RunDll32.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\finalizesetup.exe
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedadssvc.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\windows\system32\wuauclt.exe
C:\windows\servicing\TrustedInstaller.exe
C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\DFDWiz.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\kom\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\vssvc.exe
C:\windows\System32\svchost.exe -k swprv
C:\windows\system32\taskeng.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://mystart.incredibar.com/mb201?a=6R8S7V1fp4&I=26
uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: IplexToALLPlayer: {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll
BHO: PrivDog Extension: {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe
uRun: [Google Update] "C:\Users\kom\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [NortonOnlineBackup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [ComodoFSChrome] "C:\Program Files (x86)\AdTrustMedia\PrivDog\FinalizeSetup.exe" /c
mRun: [PrivDogService] "C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedadssvc.exe"
dRunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
StartupFolder: C:\Users\kom\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\POWIAD~1.LNK - C:\windows\System32\RunDll32.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\CODECP~1.LNK - C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {2F5C139F-79BD-4C84-A95A-E7140525BC55} - {5B06364D-FF00-4BD5-9D01-4379952513F2} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: NameServer = 62.179.1.62 62.179.1.63
TCP: Interfaces\{3A3C3A3A-9C10-4C7D-B984-D0238A8EFB46} : NameServer = 156.154.70.25,156.154.71.25
TCP: Interfaces\{3A3C3A3A-9C10-4C7D-B984-D0238A8EFB46} : DHCPNameServer = 62.179.1.62 62.179.1.63
TCP: Interfaces\{3A3C3A3A-9C10-4C7D-B984-D0238A8EFB46}\64F4E4F5E454459414F564255454F594E4455425E45445 : DHCPNameServer = 192.168.3.254
TCP: Interfaces\{3A3C3A3A-9C10-4C7D-B984-D0238A8EFB46}\E4544594143505F445D2935373034403 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{B0E599D8-A3B7-4684-8ABE-EA0ECCD15C2E} : NameServer = 156.154.70.25,156.154.71.25
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
x64-mWinlogon: Userinit = C:\windows\System32\userinit.exe
x64-BHO: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - <orphaned>
x64-BHO: PrivDog Extension: {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
x64-Run: [ShadowPlay] C:\windows\System32\rundll32.exe C:\windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
x64-IE: {2F5C139F-79BD-4C84-A95A-E7140525BC55} - {5B06364D-FF00-4BD5-9D01-4379952513F2} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.15\trustedads.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\windows\System32\drivers\cmdguard.sys [2013-11-14 709144]
R1 cmdHlp;COMODO Internet Security Helper Driver;C:\windows\System32\drivers\cmdhlp.sys [2013-9-24 48872]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\windows\System32\drivers\dtsoftbus01.sys [2013-1-22 283200]
R1 SABI;SAMSUNG Kernel Driver For Windows 7;C:\windows\System32\drivers\SABI.sys [2010-6-8 13824]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2014-1-5 418376]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-3-1 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-11-25 15129376]
R2 Rezip;Rezip;C:\Windows\SysWOW64\Rezip.exe [2010-6-8 311296]
R2 TurboB;Turbo Boost UI Monitor driver;C:\windows\System32\drivers\TurboB.sys [2009-11-2 13784]
R3 btwampfl;Bluetooth AMP USB Filter;C:\windows\System32\drivers\btwampfl.sys [2012-8-1 335400]
R3 btwl2cap;Bluetooth L2CAP Service;C:\windows\System32\drivers\btwl2cap.sys [2012-8-1 39464]
R3 Impcd;Impcd;C:\windows\System32\drivers\Impcd.sys [2010-6-9 158976]
R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2014-1-5 25928]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\windows\System32\drivers\nvvad64v.sys [2014-3-1 39200]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\windows\System32\drivers\yk62x64.sys [2009-9-28 395264]
S1 cmderd;COMODO Internet Security Eradication Driver;C:\windows\System32\drivers\cmderd.sys [2013-9-24 23168]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2014-1-5 701512]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
S3 cmdvirth;COMODO Virtual Service Manager;C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2013-9-24 164056]
S3 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe service --> C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe service [?]
S3 pbfilter;pbfilter;C:\Program Files\PeerBlock\pbfilter.sys [2014-1-23 22600]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2013-11-27 19456]
S3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2009-6-10 187392]
S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-3-13 155320]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2013-11-27 57856]
S3 TurboBoost;TurboBoost;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2009-11-2 126352]
S3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;C:\windows\System32\Wat\WatAdminSvc.exe [2012-11-7 1255736]
.
=============== File Associations ===============
.
ShellExec: SC2Editor.exe: open="D:/Gry/StarCraft II/Support/SC2Editor.exe" "%1"
ShellExec: SC2Switcher.exe: open="D:/Gry/StarCraft II/Support/SC2Switcher.exe" "%1"
.
=============== Created Last 30 ================
.
2014-03-02 22:42:33 -------- d-----w- C:\Users\kom\AppData\Local\ElevatedDiagnostics
2014-03-02 22:40:28 -------- d-s---w- C:\ProgramData\Shared Space
2014-03-02 22:40:17 -------- d-----w- C:\Program Files\COMODO
2014-03-02 22:40:03 -------- d-----w- C:\ProgramData\Comodo
2014-03-02 22:39:58 -------- d-----w- C:\Program Files\AdTrustMedia
2014-03-02 22:39:58 -------- d-----w- C:\Program Files (x86)\AdTrustMedia
2014-03-02 22:39:57 -------- d-----w- C:\ProgramData\Adtrustmedia
2014-03-02 22:39:52 -------- d-----w- C:\ProgramData\Comodo Downloader
2014-03-01 23:14:19 923936 ----a-w- C:\windows\System32\nvvsvc.exe
2014-03-01 23:14:19 6712608 ----a-w- C:\windows\System32\nvcpl.dll
2014-03-01 23:14:19 63776 ----a-w- C:\windows\System32\nvshext.dll
2014-03-01 23:14:19 386336 ----a-w- C:\windows\System32\nvmctray.dll
2014-03-01 23:14:19 3498272 ----a-w- C:\windows\System32\nvsvc64.dll
2014-03-01 23:14:19 2559776 ----a-w- C:\windows\System32\nvsvcr.dll
2014-03-01 23:13:44 61216 ----a-w- C:\windows\System32\OpenCL.dll
2014-03-01 23:13:44 53024 ----a-w- C:\windows\SysWow64\OpenCL.dll
2014-03-01 22:59:22 -------- d-----w- C:\Users\kom\AppData\Local\NVIDIA Corporation
2014-03-01 22:58:27 39200 ----a-w- C:\windows\System32\drivers\nvvad64v.sys
2014-03-01 22:58:27 32544 ----a-w- C:\windows\SysWow64\nvaudcap32v.dll
2014-03-01 19:48:36 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{36BEF824-39B8-4909-AFB3-A545DFEF5E7B}\offreg.dll
2014-03-01 19:48:07 -------- d-s---w- C:\windows\SysWow64\Microsoft
2014-02-28 09:34:54 10536864 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{36BEF824-39B8-4909-AFB3-A545DFEF5E7B}\mpengine.dll
2014-02-15 11:45:09 600064 ----a-w- C:\windows\System32\vbscript.dll
2014-02-15 11:45:08 523776 ----a-w- C:\windows\SysWow64\vbscript.dll
2014-02-14 10:41:31 658432 ----a-w- C:\windows\System32\RMActivate_isv.exe
2014-02-14 10:40:38 1882112 ----a-w- C:\windows\System32\msxml3.dll
2014-02-14 10:40:37 1237504 ----a-w- C:\windows\SysWow64\msxml3.dll
2014-02-14 10:40:36 2048 ----a-w- C:\windows\SysWow64\msxml3r.dll
2014-02-14 10:40:36 2048 ----a-w- C:\windows\System32\msxml3r.dll
2014-02-14 10:40:35 2565120 ----a-w- C:\windows\System32\d3d10warp.dll
2014-02-14 10:40:35 1987584 ----a-w- C:\windows\SysWow64\d3d10warp.dll
2014-02-14 10:40:32 3928064 ----a-w- C:\windows\System32\d2d1.dll
2014-02-14 10:40:31 3419136 ----a-w- C:\windows\SysWow64\d2d1.dll
.
==================== Find3M ====================
.
2014-03-02 09:30:08 89600 ----a-w- C:\windows\SysWow64\wbem\WmiApRpl.dll
2014-03-02 09:26:21 137728 ----a-w- C:\windows\System32\wbem\WmiApRpl.dll
2014-02-11 22:55:37 290184 ----a-w- C:\windows\SysWow64\PnkBstrB.xtr
2014-02-11 22:55:37 290184 ----a-w- C:\windows\SysWow64\PnkBstrB.exe
2014-02-01 09:19:49 2241536 ----a-w- C:\windows\System32\wininet.dll
2014-02-01 09:18:25 3960320 ----a-w- C:\windows\System32\jscript9.dll
2014-02-01 09:18:21 67072 ----a-w- C:\windows\System32\iesetup.dll
2014-02-01 09:18:21 136704 ----a-w- C:\windows\System32\iesysprep.dll
2014-02-01 07:58:31 1767936 ----a-w- C:\windows\SysWow64\wininet.dll
2014-02-01 07:57:20 2877952 ----a-w- C:\windows\SysWow64\jscript9.dll
2014-02-01 07:57:16 61440 ----a-w- C:\windows\SysWow64\iesetup.dll
2014-02-01 07:57:16 109056 ----a-w- C:\windows\SysWow64\iesysprep.dll
2014-02-01 07:40:43 2706432 ----a-w- C:\windows\System32\mshtml.tlb
2014-02-01 07:34:53 2706432 ----a-w- C:\windows\SysWow64\mshtml.tlb
2014-02-01 06:45:40 89600 ----a-w- C:\windows\System32\RegisterIEPKEYs.exe
2014-02-01 06:38:03 71680 ----a-w- C:\windows\SysWow64\RegisterIEPKEYs.exe
2013-12-18 20:09:39 96168 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-12-18 05:13:56 270496 ------w- C:\windows\System32\MpSigStub.exe
2013-12-14 22:11:04 290184 ----a-w- C:\windows\SysWow64\PnkBstrB.ex0
2013-12-10 02:13:11 982232 ----a-w- C:\windows\SysWow64\nvspcap.dll
2013-12-10 02:13:01 1100248 ----a-w- C:\windows\System32\nvspcap64.dll
2013-12-09 00:34:51 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-09 00:34:51 692616 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2013-12-05 08:42:26 35104 ----a-w- C:\windows\System32\nvaudcap64v.dll
2013-12-04 02:27:33 485888 ----a-w- C:\windows\System32\secproc_isv.dll
2013-12-04 02:27:33 123392 ----a-w- C:\windows\System32\secproc_ssp_isv.dll
2013-12-04 02:27:33 123392 ----a-w- C:\windows\System32\secproc_ssp.dll
2013-12-04 02:27:16 488448 ----a-w- C:\windows\System32\secproc.dll
2013-12-04 02:26:32 528384 ----a-w- C:\windows\System32\msdrm.dll
2013-12-04 02:16:51 626176 ----a-w- C:\windows\System32\RMActivate.exe
2013-12-04 02:16:50 552960 ----a-w- C:\windows\System32\RMActivate_ssp_isv.exe
2013-12-04 02:16:48 553984 ----a-w- C:\windows\System32\RMActivate_ssp.exe
2013-12-04 02:03:20 87040 ----a-w- C:\windows\SysWow64\secproc_ssp_isv.dll
2013-12-04 02:03:20 87040 ----a-w- C:\windows\SysWow64\secproc_ssp.dll
2013-12-04 02:03:20 423936 ----a-w- C:\windows\SysWow64\secproc_isv.dll
2013-12-04 02:03:08 428032 ----a-w- C:\windows\SysWow64\secproc.dll
2013-12-04 02:02:06 390144 ----a-w- C:\windows\SysWow64\msdrm.dll
2013-12-04 01:54:14 510976 ----a-w- C:\windows\SysWow64\RMActivate_ssp.exe
2013-12-04 01:54:10 594944 ----a-w- C:\windows\SysWow64\RMActivate_isv.exe
2013-12-04 01:54:09 572416 ----a-w- C:\windows\SysWow64\RMActivate.exe
2013-12-04 01:54:06 508928 ----a-w- C:\windows\SysWow64\RMActivate_ssp_isv.exe
.
============= FINISH: 0:32:54,30 ===============
4)
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 2012-08-01 11:35:09
System Uptime: 2014-03-02 23:19:03 (1 hours ago)
.
Motherboard: SAMSUNG ELECTRONICS CO., LTD. | | R580/R590
Processor: Intel(R) Core(TM) i7 CPU M 620 @ 2.67GHz | CPU 1 | 2667/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 253 GiB total, 145,189 GiB free.
D: is FIXED (NTFS) - 323 GiB total, 265,99 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP159: 2014-03-01 20:47:39 - avast! antivirus system restore point
RP160: 2014-03-01 23:25:06 - Removed XSplit Broadcaster
RP161: 2014-03-01 23:25:54 - Removed Soluto
RP162: 2014-03-01 23:59:27 - Zainstalowany program DirectX
RP163: 2014-03-02 23:40:48 - Instalacja pakietu sterownika urządzenia: COMODO Usługa sieciowa
RP164: 2014-03-02 23:49:45 - Windows Update
.
==== Installed Programs ======================
.
7-Zip 9.20 (x64 edition)
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1 - Polish
Aktualizacje NVIDIA 10.11.15
ALLPlayer V5.X
Atheros Client Installation Program
µTorrent
Banished v1.0.0 64-bit
BatteryLifeExtender
Broadcom 802.11 Network Adapter
Calmer 1.1
CCleaner
ChargeableUSB
Codec Pack - All In 1 6.0.3.0
Cole2k Media - Codec Pack (Advanced) 8.0.2
COMODO Internet Security Premium
Compatibility Pack for the 2007 Office system
CyberLink DVD Suite
CyberLink Power2Go
CyberLink PowerDVD 8
CyberLink YouCam
DAEMON Tools Lite
Easy Display Manager
EasyBatteryManager
GeForce Experience NvStream Client Components
Google Chrome
HP Deskjet 1050 J410 series Pomoc
HP Deskjet 1050 J410 series — badanie mające na celu poprawę produktów
HP Deskjet 1050 J410 series — podstawowe oprogramowanie urządzenia
HP Photo Creations
HP Update
Intel(R) Rapid Storage Technology
Intel(R) Turbo Boost Technology Driver
Intel(R) Turbo Boost Technology Monitor
Java 7 Update 51
Java Auto Updater
Malwarebytes Anti-Malware wersja 1.75.0.1300
Marvell Miniport Driver
Metro: Last Light (c) Deep Silver version 1
Microsoft .NET Framework 4 Client Profile PLK Language Pack
Microsoft .NET Framework 4 Extended PLK Language Pack
Microsoft .NET Framework 4.5.1
Microsoft Office 2010
Microsoft Office Professional Edition 2003
Microsoft PowerPoint Viewer
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
NapiProjekt (2.1.0.2287)
Narzędzie do przekazywania usługi Windows Live
NVIDIA GeForce Experience 1.8.1
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA Oprogramowanie systemu PhysX 9.13.1220
NVIDIA PhysX
NVIDIA ShadowPlay 10.11.15
NVIDIA Sterownik dźwięku HD 1.3.30.1
NVIDIA Sterownik graficzny 334.89
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.19
Origin
Panel sterowania NVIDIA 334.89
PeerBlock 1.2 (r693)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended
Portal
PrivDog
Realtek High Definition Audio Driver
REALTEK Wireless LAN Software
Samsung Recovery Solution 4
Samsung Support Center
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
SHIELD Streaming
Skype™ 5.10
Sony PC Companion 2.10.136
Synaptics Pointing Device Driver
WIDCOMM Bluetooth Software
WinZip
WinZip 17.0
.
==== End Of File ===========================