Dobrý den, prosím o kontrolu logu. NTB je pomalý, každé cca 2 hodiny při prohlížení internetu zamrzne na cca 1 min. Spouštění aplikací taktéž pomalé, mám podezření na špatně přenastavené internetové nastavení. Děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-01-01 22:08:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 27 GB (13%) free of 200 GB
Total RAM: 4000 MB (70% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 3923824
\??\C:\Windows\system32\conhost.exe "1629467750-1853931151-3125421094920943899701359917616699981996165978-1981528169
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {48432F68-6F97-4B3B-A0BF-9BA57326CF00}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
taskeng.exe {DCBB0987-875E-4F35-B540-EAB46CA243C3}
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
taskeng.exe {E4ED0D23-A3C3-4704-A453-12A10CAE20D7}
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Outpost security Firewall\op_mon.exe" /tray /noservice
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"D:\WhatPulse2\whatpulse.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "1272728016-1190156625-3334404361881007929-256386420-872471641-27569565-1015003981
\??\C:\Windows\system32\conhost.exe "-851144878-1118615651-141837954-511981551-13272962941699729063299216868646337485
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1100" "1096"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "664" "660"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1264" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1192" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1264" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "1192"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "1264"
WLIDSvcM.exe 3396
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "820" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "748" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "820"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "748"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
ATKOSD.exe
KBFiltr.exe
WDC.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a95288c7-2807-4fd1-bb7b-c2d37cca0c0e -SystemEventPortName:HostProcess-2899fb84-594f-438e-a07d-8db176c65117 -IoCancelEventPortName:HostProcess-456807c8-11ce-40f6-b848-c7d4c6958840 -NonStateChangingEventPortName:HostProcess-ca44b831-0db9-41c6-89db-c0815c7ca3cf -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:65231ff8-e370-44ef-8728-e2a52ea3fe3b -DeviceGroupId:WpdFsGroup
"D:\IObit Uninstaller\UninstallMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"D:\Steam\Steam.exe"
"D:\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "D:\Steam\config\htmlcache" -cookiepath "D:\Steam\config\cookies" -steampid 3336 --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"D:\Steam\bin\steamwebhelper.exe" --type=renderer --disable-accelerated-video-decode --disable-delegated-renderer --disable-gpu-compositing --disable-threaded-compositing --enable-pinch --enable-software-compositing --no-sandbox --enable-direct-write --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-accelerated-compositing --disable-gpu-compositing --channel="6396.0.1412431850\1310960137" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\asus\AppData\Local\NetBet Poker\casino.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\asus\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - D:\IObit Uninstaller\UninstallExplorer64.dll [2014-12-20 2471744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-28 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-28 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288]
"OutpostMonitor"=D:\OUTPOS~1\op_mon.exe [2011-04-04 4510072]
"OutpostFeedBack"=D:\Outpost security Firewall\feedback.exe [2011-03-30 808064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2013-09-20 3666224]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2014-12-08 3563520]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2014-08-22 2281248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe [2014-12-08 567880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-12 3391712]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-19 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="d:\outpos~1\wl_hoo~1.dll c:\windows\jaksta\ac\x64\jaudcap.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2015-01-01 22:08:45 ----D---- C:\Program Files\trend micro
2015-01-01 22:08:37 ----D---- C:\rsit
2015-01-01 17:23:32 ----D---- C:\Users\asus\AppData\Roaming\PowerISO
2015-01-01 17:22:16 ----A---- C:\Windows\system32\drivers\scdemu.sys
2015-01-01 17:22:05 ----D---- C:\Program Files\PowerISO
2015-01-01 15:41:09 ----D---- C:\Program Files (x86)\7-Zip
2014-12-28 16:19:44 ----D---- C:\Users\asus\AppData\Roaming\SitNGoWizard
2014-12-25 11:04:37 ----D---- C:\ProgramData\Oberon Media
2014-12-21 15:00:04 ----D---- C:\Program Files (x86)\SpeedFan
2014-12-21 14:59:45 ----D---- C:\Users\asus\AppData\Roaming\Roaming
2014-12-21 14:59:41 ----D---- C:\HM2Archive
2014-12-21 14:59:18 ----D---- C:\Users\asus\AppData\Roaming\HEM Data
2014-12-21 14:51:37 ----D---- C:\ProgramData\XHEO INC
2014-12-21 14:51:00 ----D---- C:\Users\asus\AppData\Roaming\HoldemManager
2014-12-21 14:33:07 ----D---- C:\Program Files (x86)\Holdem Manager 2
2014-12-21 14:32:50 ----D---- C:\Program Files (x86)\PSQLINSTALL
2014-12-18 15:17:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-18 15:17:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-13 15:14:32 ----D---- C:\Windows\system32\appraiser
2014-12-11 09:18:07 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 09:18:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\appraiser.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aepic.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aeinv.dll
2014-12-11 09:17:59 ----A---- C:\Windows\system32\invagent.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\generaltel.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\devinv.dll
2014-12-11 09:17:57 ----A---- C:\Windows\system32\aepdu.dll
2014-12-11 09:17:30 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-11 09:12:53 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 09:12:53 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 09:12:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 09:12:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 09:12:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 09:12:47 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 09:12:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 09:12:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-11 09:12:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 09:12:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 09:12:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 09:12:39 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 09:12:38 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 09:12:36 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 09:12:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 09:12:30 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\ieui.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 09:12:21 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 09:12:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 09:12:19 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 09:12:11 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 09:04:52 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-11 09:04:52 ----A---- C:\Windows\system32\charmap.exe
2014-12-11 09:04:51 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-11 09:04:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-11 09:04:43 ----A---- C:\Windows\system32\tzres.dll
2014-12-10 08:25:54 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-10 08:25:51 ----A---- C:\Windows\system32\mf.dll
2014-12-09 23:22:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-12-06 13:03:44 ----D---- C:\Program Files (x86)\GPU-Z
2014-12-06 12:36:20 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-12-01 16:33:28 ----D---- C:\ProgramData\ManiaPlanet
2014-11-28 23:53:36 ----D---- C:\Users\asus\AppData\Roaming\puush
2014-11-28 23:53:14 ----D---- C:\Program Files (x86)\puush
2014-11-28 23:50:54 ----D---- C:\Users\asus\AppData\Roaming\NCH Software
2014-11-28 23:47:33 ----D---- C:\Program Files\OBS
2014-11-28 23:46:49 ----RD---- C:\Program Files (x86)\Skype
2014-11-28 23:39:18 ----D---- C:\Users\asus\AppData\Roaming\TeamViewer
2014-11-28 23:30:59 ----D---- C:\ProgramData\LogMeIn
2014-11-23 22:17:13 ----D---- C:\ProgramData\tmp
2014-11-23 22:17:12 ----D---- C:\ProgramData\hps
2014-11-23 22:10:35 ----D---- C:\Program Files\Fotolab
2014-11-19 09:44:29 ----D---- C:\Program Files\PostgreSQL
2014-11-19 08:53:09 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 08:53:09 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 08:53:08 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 08:53:07 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 04:31:16 ----A---- C:\Windows\SYSWOW64\FM20.DLL
2014-11-18 10:58:52 ----D---- C:\ProgramData\SystemExplorer
2014-11-15 16:35:28 ----D---- C:\ProgramData\RegRun
2014-11-12 17:05:09 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 17:05:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 17:05:08 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 17:05:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 17:05:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 17:05:03 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 17:05:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 17:02:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 17:02:13 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 17:02:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 17:02:12 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 17:02:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:02:10 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 17:02:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 17:02:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 17:01:59 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 17:01:59 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 17:01:11 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 17:01:11 ----A---- C:\Windows\system32\packager.dll
2014-11-12 17:01:10 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 17:01:07 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 17:01:07 ----A---- C:\Windows\system32\msi.dll
2014-11-12 17:00:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 17:00:38 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-09 15:03:15 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll20141109150311.dll
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2014-11-09 12:54:08 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-11-06 18:38:27 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-11-01 10:51:33 ----D---- C:\hotfix
2014-10-31 21:50:40 ----D---- C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4
2014-10-31 19:34:20 ----D---- C:\Program Files (x86)\OpenVPN Technologies
2014-10-31 15:47:09 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2014-10-31 09:08:19 ----D---- C:\Program Files\CCleaner
2014-10-30 13:10:37 ----A---- C:\Windows\system32\drivers\VBEngNT.sys
2014-10-30 13:10:36 ----A---- C:\Windows\system32\drivers\SandBox64.sys
2014-10-30 13:10:23 ----A---- C:\Windows\system32\drivers\afwcore.sys
2014-10-30 13:09:16 ----A---- C:\Windows\system32\drivers\afw.sys
2014-10-30 13:08:08 ----D---- C:\Windows\system32\Filt
2014-10-30 13:08:08 ----D---- C:\Users\asus\AppData\Roaming\Agnitum
2014-10-30 13:07:11 ----D---- C:\ProgramData\Agnitum
2014-10-30 09:29:24 ----A---- C:\Windows\SYSWOW64\PARTIZAN.TXT
2014-10-30 00:09:54 ----D---- C:\ProgramData\YTAHELPER.del
2014-10-29 23:25:59 ----A---- C:\Windows\system32\Partizan.exe
2014-10-29 23:24:24 ----D---- C:\@RestoreQuarantine
2014-10-29 22:37:42 ----RASHOT---- C:\Windows\winstart.bat
2014-10-29 20:42:05 ----A---- C:\autoexec.bat
2014-10-29 20:41:20 ----D---- C:\Program Files\Enigma Software Group
2014-10-29 20:39:41 ----D---- C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP
2014-10-29 20:08:53 ----D---- C:\Users\asus\AppData\Roaming\Runscanner.net
2014-10-28 14:40:45 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-28 14:40:18 ----D---- C:\Program Files (x86)\Java
2014-10-26 16:52:00 ----D---- C:\Program Files (x86)\WinPcap
2014-10-18 19:27:29 ----D---- C:\Program Files (x86)\Xiph.Org
2014-10-15 14:32:08 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 14:31:47 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 14:31:45 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 14:31:21 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 14:31:21 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 14:31:20 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 14:31:19 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 14:31:17 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 14:31:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 14:31:15 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 14:31:13 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 14:31:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 14:31:11 ----A---- C:\Windows\system32\ci.dll
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winload.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 14:31:08 ----A---- C:\Windows\system32\evr.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 14:31:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 14:31:06 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 14:31:05 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 14:31:03 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 14:31:03 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 14:31:02 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 14:31:01 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 14:31:00 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 14:30:59 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 14:30:59 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 14:30:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 14:30:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 14:30:57 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 14:30:57 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 14:30:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 14:30:55 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 14:30:54 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 14:28:00 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 14:27:59 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 14:27:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 14:27:49 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 14:27:47 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 14:27:31 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 14:27:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-13 14:33:59 ----SHD---- C:\found.000
2014-10-12 12:45:22 ----D---- C:\Users\asus\AppData\Roaming\Steam
2014-10-04 22:26:48 ----D---- C:\Program Files\SAMSUNG
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-04 22:20:35 ----D---- C:\Program Files (x86)\Samsung
======List of files/folders modified in the last 3 months======
2015-01-01 22:08:45 ----RD---- C:\Program Files
2015-01-01 22:08:41 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-01-01 22:06:48 ----D---- C:\Windows\Temp
2015-01-01 18:37:56 ----D---- C:\Windows\system32\config
2015-01-01 18:26:06 ----A---- C:\Windows\SYSWOW64\log.txt
2015-01-01 18:23:59 ----D---- C:\Windows\system32\Tasks
2015-01-01 18:20:19 ----D---- C:\Windows\system32\drivers
2015-01-01 18:18:56 ----SHD---- C:\System Volume Information
2015-01-01 18:05:44 ----D---- C:\Windows\System32
2015-01-01 18:05:44 ----D---- C:\Windows\inf
2015-01-01 18:05:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-01 15:41:09 ----RD---- C:\Program Files (x86)
2015-01-01 14:42:13 ----D---- C:\Windows\Prefetch
2014-12-28 10:41:32 ----D---- C:\Windows\system32\NDF
2014-12-26 11:42:38 ----D---- C:\ProgramData\ProductData
2014-12-25 11:49:04 ----AD---- C:\ProgramData\Temp
2014-12-25 11:04:37 ----HD---- C:\ProgramData
2014-12-21 19:02:17 ----D---- C:\Windows\rescache
2014-12-21 14:52:33 ----D---- C:\Windows\SysWOW64
2014-12-21 11:30:12 ----D---- C:\Windows\winsxs
2014-12-20 11:58:11 ----D---- C:\Program Files (x86)\Google
2014-12-20 11:55:39 ----D---- C:\ProgramData\IObit
2014-12-20 11:55:38 ----D---- C:\Users\asus\AppData\Roaming\IObit
2014-12-20 11:54:36 ----D---- C:\Program Files (x86)\IObit
2014-12-20 11:30:09 ----D---- C:\ProgramData\Razer
2014-12-20 10:45:49 ----D---- C:\Windows\SYSWOW64\drivers
2014-12-20 10:37:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2014-12-18 20:48:00 ----D---- C:\Windows\Microsoft.NET
2014-12-18 14:58:28 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-12-18 14:56:28 ----SHD---- C:\Config.Msi
2014-12-16 17:14:59 ----SHD---- C:\Windows\Installer
2014-12-16 17:14:46 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-12-13 15:20:53 ----D---- C:\Windows
2014-12-13 15:14:33 ----SD---- C:\Windows\system32\CompatTel
2014-12-13 15:14:33 ----D---- C:\Windows\AppCompat
2014-12-13 15:14:32 ----SD---- C:\ProgramData\Microsoft
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\hr-HR
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\bg-BG
2014-12-13 15:14:31 ----D---- C:\Program Files\Internet Explorer
2014-12-13 15:14:31 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sl-SI
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\ro-RO
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lv-LV
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lt-LT
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\et-EE
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sr-Latn-CS
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sl-SI
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sk-SK
2014-12-13 15:14:29 ----D---- C:\Windows\system32\ro-RO
2014-12-13 15:14:29 ----D---- C:\Windows\system32\pl-PL
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lv-LV
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lt-LT
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hu-HU
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hr-HR
2014-12-13 15:14:29 ----D---- C:\Windows\system32\et-EE
2014-12-13 15:14:29 ----D---- C:\Windows\system32\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\bg-BG
2014-12-13 15:14:28 ----D---- C:\Windows\system32\en-US
2014-12-13 15:14:28 ----D---- C:\Windows\PolicyDefinitions
2014-12-13 14:40:14 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 11:13:33 ----D---- C:\Windows\system32\MRT
2014-12-11 11:02:39 ----D---- C:\Windows\debug
2014-12-11 11:02:36 ----A---- C:\Windows\system32\MRT.exe
2014-12-11 09:17:11 ----D---- C:\Windows\system32\catroot2
2014-12-10 08:56:59 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-12-10 08:56:55 ----D---- C:\Windows\Minidump
2014-12-10 08:56:55 ----D---- C:\Windows\Logs
2014-12-09 23:23:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-09 23:04:24 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-12-07 12:50:22 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-12-07 03:00:36 ----D---- C:\ProgramData\Origin
2014-12-06 12:38:00 ----D---- C:\Windows\SYSWOW64\directx
2014-11-29 01:40:56 ----D---- C:\Users\asus\AppData\Roaming\Skype
2014-11-28 23:46:51 ----D---- C:\Program Files (x86)\Common Files
2014-11-28 23:46:29 ----D---- C:\ProgramData\Skype
2014-11-19 09:47:55 ----D---- C:\Users
2014-11-17 21:22:03 ----D---- C:\Windows\system32\drivers\etc
2014-11-16 02:52:42 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-11-14 16:24:54 ----D---- C:\AdwCleaner
2014-11-14 16:08:38 ----A---- C:\Windows\win.ini
2014-11-13 17:56:28 ----RSD---- C:\Windows\assembly
2014-11-12 21:01:00 ----RSD---- C:\Windows\Fonts
2014-11-10 14:07:37 ----SHD---- C:\Boot
2014-11-06 18:39:25 ----D---- C:\Windows\Tasks
2014-11-01 10:55:30 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-10-31 22:20:42 ----D---- C:\Windows\system32\GroupPolicy
2014-10-31 20:36:25 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-10-31 19:35:58 ----D---- C:\Windows\system32\DriverStore
2014-10-31 16:04:08 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-10-31 09:40:20 ----D---- C:\Program Files\Common Files
2014-10-31 09:12:14 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Pro
2014-10-31 00:29:25 ----D---- C:\Windows\system32\catroot
2014-10-30 12:25:26 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-29 23:22:36 ----D---- C:\ProgramData\HostIt
2014-10-28 14:47:42 ----D---- C:\ProgramData\Oracle
2014-10-27 19:58:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-27 19:46:49 ----D---- C:\Program Files (x86)\Microsoft
2014-10-27 19:29:19 ----D---- C:\Users\asus\AppData\Roaming\Ubisoft
2014-10-16 13:52:40 ----D---- C:\Program Files\Windows Media Player
2014-10-16 13:52:40 ----D---- C:\Program Files (x86)\Windows Media Player
2014-10-16 13:52:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 13:52:37 ----D---- C:\Windows\system32\Dism
2014-10-16 13:52:30 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 13:52:30 ----D---- C:\Windows\system32\Boot
2014-10-12 11:02:27 ----D---- C:\Users\asus\AppData\Roaming\Tropico 5
2014-10-04 22:21:07 ----D---- C:\Users\asus\AppData\Roaming\Samsung
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 afw;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2010-04-20 39528]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SandBox;SandBox; \??\C:\Windows\system32\drivers\SandBox64.sys [2011-03-21 1097672]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 afwcore;afwcore; C:\Windows\system32\drivers\afwcore.sys [2010-09-27 424040]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 ASWFilt;ASWFilt; \??\C:\Windows\system32\Filt\ASWFilt64.dll [2011-03-21 49168]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-03 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
R3 VBEngNT;VBEngNT; \??\C:\Windows\system32\drivers\VBEngNT.sys [2011-02-02 293048]
R3 VBFilt;VBFilt; \??\C:\Windows\system32\Filt\VBFilt64.dll [2011-03-21 42976]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S1 dswafkle;dswafkle; \??\C:\Windows\system32\drivers\dswafkle.sys []
S1 fhkkqfgk;fhkkqfgk; \??\C:\Windows\system32\drivers\fhkkqfgk.sys []
S1 kindgpjk;kindgpjk; \??\C:\Windows\system32\drivers\kindgpjk.sys []
S1 pawjfgeg;pawjfgeg; \??\C:\Windows\system32\drivers\pawjfgeg.sys []
S1 pumhksnc;pumhksnc; \??\C:\Windows\system32\drivers\pumhksnc.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-08 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S2 acssrv;Agnitum Client Security Service; D:\OUTPOS~1\acs.exe [2011-04-04 3501696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-12-20 2631456]
S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2014-12-07 1900400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zaneřáděný NTB
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zaneřáděný NTB
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zaneřáděný NTB
# AdwCleaner v4.106 - Report created 01/01/2015 at 22:41:35
# Updated 21/12/2014 by Xplode
# Database : 2014-12-21.4 [Local]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : asus - ASUS-PC
# Running from : C:\Users\asus\Desktop\adwcleaner_4.106.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\54e3c0568ec2791a
Folder Deleted : C:\Users\asus\AppData\Local\CrashRpt
Folder Deleted : C:\Users\asus\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\asus\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam
Folder Deleted : C:\Users\asus\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dfohdbmjdkfijghgklbickfnaepghgba
File Deleted : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage
File Deleted : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal
File Deleted : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3}
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17496
-\\ Google Chrome v33.0.1750.154
-\\ Comodo Dragon v
*************************
AdwCleaner[R0].txt - [17821 octets] - [20/07/2014 12:34:09]
AdwCleaner[R1].txt - [6262 octets] - [21/07/2014 20:03:10]
AdwCleaner[R2].txt - [10738 octets] - [06/11/2014 18:37:04]
AdwCleaner[R3].txt - [2424 octets] - [14/11/2014 16:21:52]
AdwCleaner[R4].txt - [2929 octets] - [01/01/2015 22:38:22]
AdwCleaner[S0].txt - [16162 octets] - [20/07/2014 12:35:42]
AdwCleaner[S1].txt - [6441 octets] - [21/07/2014 20:04:35]
AdwCleaner[S2].txt - [10996 octets] - [06/11/2014 18:39:15]
AdwCleaner[S3].txt - [2742 octets] - [01/01/2015 22:41:35]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [2802 octets] ##########
# Updated 21/12/2014 by Xplode
# Database : 2014-12-21.4 [Local]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : asus - ASUS-PC
# Running from : C:\Users\asus\Desktop\adwcleaner_4.106.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\54e3c0568ec2791a
Folder Deleted : C:\Users\asus\AppData\Local\CrashRpt
Folder Deleted : C:\Users\asus\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\asus\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam
Folder Deleted : C:\Users\asus\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dfohdbmjdkfijghgklbickfnaepghgba
File Deleted : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage
File Deleted : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal
File Deleted : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3}
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17496
-\\ Google Chrome v33.0.1750.154
-\\ Comodo Dragon v
*************************
AdwCleaner[R0].txt - [17821 octets] - [20/07/2014 12:34:09]
AdwCleaner[R1].txt - [6262 octets] - [21/07/2014 20:03:10]
AdwCleaner[R2].txt - [10738 octets] - [06/11/2014 18:37:04]
AdwCleaner[R3].txt - [2424 octets] - [14/11/2014 16:21:52]
AdwCleaner[R4].txt - [2929 octets] - [01/01/2015 22:38:22]
AdwCleaner[S0].txt - [16162 octets] - [20/07/2014 12:35:42]
AdwCleaner[S1].txt - [6441 octets] - [21/07/2014 20:04:35]
AdwCleaner[S2].txt - [10996 octets] - [06/11/2014 18:39:15]
AdwCleaner[S3].txt - [2742 octets] - [01/01/2015 22:41:35]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [2802 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zaneřáděný NTB
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zaneřáděný NTB
Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-01-02 23:21:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 28 GB (14%) free of 200 GB
Total RAM: 4000 MB (51% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 3406656
\??\C:\Windows\system32\conhost.exe "-854457061274174485-781525629-1104573313433806671582487266-21225636951744202831
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {A9791E34-9DE8-42C4-AAC4-0BB88D43170B}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\Explorer.EXE
taskeng.exe {66A38CC0-039D-4E27-AA2F-A687742B13FC}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
taskeng.exe {C438A447-D926-42B6-927C-E308185683DF}
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Outpost security Firewall\op_mon.exe" /tray /noservice
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\AsScrPro.exe"
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "-55679392713796959811110571777-1252763949-13370709941228160329-117066439-1431163409
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "20365564881350387228-1902477060-1287606132-1727391727407603152-1773238311682790912
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "664" "660"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1100" "1096"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "172" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1260" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "172" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "1260"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "172"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
WLIDSvcM.exe 4112
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "820" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "832" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "820"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "832"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"D:\IObit Uninstaller\UninstallMonitor.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4c848472-66c4-4b92-9b29-e6d957a31380 -SystemEventPortName:HostProcess-eab27169-aa31-41fa-b990-bb5e6e6aa07f -IoCancelEventPortName:HostProcess-2b817df9-82d4-42c1-826b-ab817dd436bb -NonStateChangingEventPortName:HostProcess-5c055584-5bbc-4d4d-b3f3-a4d7a5d5cc97 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bbef9df2-a8af-46db-994b-ce11661c3e0a -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\asus\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - D:\IObit Uninstaller\UninstallExplorer64.dll [2014-12-20 2471744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-28 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-28 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288]
"OutpostMonitor"=D:\OUTPOS~1\op_mon.exe [2011-04-04 4510072]
"OutpostFeedBack"=D:\Outpost security Firewall\feedback.exe [2011-03-30 808064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2013-09-20 3666224]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2014-12-08 3563520]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2014-08-22 2281248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe [2014-12-08 567880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-12 3391712]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-19 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="d:\outpos~1\wl_hoo~1.dll c:\windows\jaksta\ac\x64\jaudcap.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2015-01-01 22:08:45 ----D---- C:\Program Files\trend micro
2015-01-01 22:08:37 ----D---- C:\rsit
2015-01-01 17:23:32 ----D---- C:\Users\asus\AppData\Roaming\PowerISO
2015-01-01 17:22:16 ----A---- C:\Windows\system32\drivers\scdemu.sys
2015-01-01 17:22:05 ----D---- C:\Program Files\PowerISO
2015-01-01 15:41:09 ----D---- C:\Program Files (x86)\7-Zip
2014-12-28 16:19:44 ----D---- C:\Users\asus\AppData\Roaming\SitNGoWizard
2014-12-25 11:04:37 ----D---- C:\ProgramData\Oberon Media
2014-12-21 15:00:04 ----D---- C:\Program Files (x86)\SpeedFan
2014-12-21 14:59:45 ----D---- C:\Users\asus\AppData\Roaming\Roaming
2014-12-21 14:59:41 ----D---- C:\HM2Archive
2014-12-21 14:59:18 ----D---- C:\Users\asus\AppData\Roaming\HEM Data
2014-12-21 14:51:37 ----D---- C:\ProgramData\XHEO INC
2014-12-21 14:51:00 ----D---- C:\Users\asus\AppData\Roaming\HoldemManager
2014-12-21 14:33:07 ----D---- C:\Program Files (x86)\Holdem Manager 2
2014-12-21 14:32:50 ----D---- C:\Program Files (x86)\PSQLINSTALL
2014-12-18 15:17:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-18 15:17:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-13 15:14:32 ----D---- C:\Windows\system32\appraiser
2014-12-11 09:18:07 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 09:18:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\appraiser.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aepic.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aeinv.dll
2014-12-11 09:17:59 ----A---- C:\Windows\system32\invagent.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\generaltel.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\devinv.dll
2014-12-11 09:17:57 ----A---- C:\Windows\system32\aepdu.dll
2014-12-11 09:17:30 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-11 09:12:53 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 09:12:53 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 09:12:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 09:12:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 09:12:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 09:12:47 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 09:12:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 09:12:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-11 09:12:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 09:12:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 09:12:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 09:12:39 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 09:12:38 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 09:12:36 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 09:12:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 09:12:30 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\ieui.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 09:12:21 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 09:12:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 09:12:19 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 09:12:11 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 09:04:52 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-11 09:04:52 ----A---- C:\Windows\system32\charmap.exe
2014-12-11 09:04:51 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-11 09:04:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-11 09:04:43 ----A---- C:\Windows\system32\tzres.dll
2014-12-10 08:25:54 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-10 08:25:51 ----A---- C:\Windows\system32\mf.dll
2014-12-09 23:22:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-12-06 13:03:44 ----D---- C:\Program Files (x86)\GPU-Z
2014-12-06 12:36:20 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-12-01 16:33:28 ----D---- C:\ProgramData\ManiaPlanet
2014-11-28 23:53:36 ----D---- C:\Users\asus\AppData\Roaming\puush
2014-11-28 23:53:14 ----D---- C:\Program Files (x86)\puush
2014-11-28 23:47:33 ----D---- C:\Program Files\OBS
2014-11-28 23:46:49 ----RD---- C:\Program Files (x86)\Skype
2014-11-28 23:39:18 ----D---- C:\Users\asus\AppData\Roaming\TeamViewer
2014-11-28 23:30:59 ----D---- C:\ProgramData\LogMeIn
2014-11-23 22:17:13 ----D---- C:\ProgramData\tmp
2014-11-23 22:17:12 ----D---- C:\ProgramData\hps
2014-11-23 22:10:35 ----D---- C:\Program Files\Fotolab
2014-11-19 09:44:29 ----D---- C:\Program Files\PostgreSQL
2014-11-19 08:53:09 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 08:53:09 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 08:53:08 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 08:53:07 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 04:31:16 ----A---- C:\Windows\SYSWOW64\FM20.DLL
2014-11-18 10:58:52 ----D---- C:\ProgramData\SystemExplorer
2014-11-15 16:35:28 ----D---- C:\ProgramData\RegRun
2014-11-12 17:05:09 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 17:05:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 17:05:08 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 17:05:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 17:05:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 17:05:03 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 17:05:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 17:02:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 17:02:13 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 17:02:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 17:02:12 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 17:02:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:02:10 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 17:02:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 17:02:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 17:01:59 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 17:01:59 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 17:01:11 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 17:01:11 ----A---- C:\Windows\system32\packager.dll
2014-11-12 17:01:10 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 17:01:07 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 17:01:07 ----A---- C:\Windows\system32\msi.dll
2014-11-12 17:00:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 17:00:38 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-09 15:03:15 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll20141109150311.dll
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2014-11-09 12:54:08 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-11-06 18:38:27 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-11-01 10:51:33 ----D---- C:\hotfix
2014-10-31 21:50:40 ----D---- C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4
2014-10-31 19:34:20 ----D---- C:\Program Files (x86)\OpenVPN Technologies
2014-10-31 15:47:09 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2014-10-31 09:08:19 ----D---- C:\Program Files\CCleaner
2014-10-30 13:10:37 ----A---- C:\Windows\system32\drivers\VBEngNT.sys
2014-10-30 13:10:36 ----A---- C:\Windows\system32\drivers\SandBox64.sys
2014-10-30 13:10:23 ----A---- C:\Windows\system32\drivers\afwcore.sys
2014-10-30 13:09:16 ----A---- C:\Windows\system32\drivers\afw.sys
2014-10-30 13:08:08 ----D---- C:\Windows\system32\Filt
2014-10-30 13:08:08 ----D---- C:\Users\asus\AppData\Roaming\Agnitum
2014-10-30 13:07:11 ----D---- C:\ProgramData\Agnitum
2014-10-30 09:29:24 ----A---- C:\Windows\SYSWOW64\PARTIZAN.TXT
2014-10-30 00:09:54 ----D---- C:\ProgramData\YTAHELPER.del
2014-10-29 23:25:59 ----A---- C:\Windows\system32\Partizan.exe
2014-10-29 23:24:24 ----D---- C:\@RestoreQuarantine
2014-10-29 22:37:42 ----RASHOT---- C:\Windows\winstart.bat
2014-10-29 20:42:05 ----A---- C:\autoexec.bat
2014-10-29 20:41:20 ----D---- C:\Program Files\Enigma Software Group
2014-10-29 20:39:41 ----D---- C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP
2014-10-29 20:08:53 ----D---- C:\Users\asus\AppData\Roaming\Runscanner.net
2014-10-28 14:40:45 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-28 14:40:18 ----D---- C:\Program Files (x86)\Java
2014-10-26 16:52:00 ----D---- C:\Program Files (x86)\WinPcap
2014-10-18 19:27:29 ----D---- C:\Program Files (x86)\Xiph.Org
2014-10-15 14:32:08 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 14:31:47 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 14:31:45 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 14:31:21 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 14:31:21 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 14:31:20 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 14:31:19 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 14:31:17 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 14:31:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 14:31:15 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 14:31:13 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 14:31:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 14:31:11 ----A---- C:\Windows\system32\ci.dll
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winload.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 14:31:08 ----A---- C:\Windows\system32\evr.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 14:31:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 14:31:06 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 14:31:05 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 14:31:03 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 14:31:03 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 14:31:02 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 14:31:01 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 14:31:00 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 14:30:59 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 14:30:59 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 14:30:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 14:30:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 14:30:57 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 14:30:57 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 14:30:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 14:30:55 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 14:30:54 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 14:28:00 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 14:27:59 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 14:27:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 14:27:49 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 14:27:47 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 14:27:31 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 14:27:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-13 14:33:59 ----SHD---- C:\found.000
2014-10-12 12:45:22 ----D---- C:\Users\asus\AppData\Roaming\Steam
2014-10-04 22:26:48 ----D---- C:\Program Files\SAMSUNG
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-04 22:20:35 ----D---- C:\Program Files (x86)\Samsung
======List of files/folders modified in the last 3 months======
2015-01-02 23:21:34 ----D---- C:\Windows\Temp
2015-01-02 23:15:38 ----A---- C:\Windows\SYSWOW64\log.txt
2015-01-02 23:14:25 ----D---- C:\Windows\system32\config
2015-01-02 23:13:17 ----D---- C:\Windows\system32\Tasks
2015-01-01 23:21:08 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-01-01 22:46:45 ----D---- C:\ProgramData\ProductData
2015-01-01 22:41:42 ----D---- C:\AdwCleaner
2015-01-01 22:41:37 ----HD---- C:\ProgramData
2015-01-01 22:08:45 ----RD---- C:\Program Files
2015-01-01 18:20:19 ----D---- C:\Windows\system32\drivers
2015-01-01 18:18:56 ----SHD---- C:\System Volume Information
2015-01-01 18:05:44 ----D---- C:\Windows\System32
2015-01-01 18:05:44 ----D---- C:\Windows\inf
2015-01-01 18:05:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-01 15:41:09 ----RD---- C:\Program Files (x86)
2015-01-01 14:42:13 ----D---- C:\Windows\Prefetch
2014-12-28 10:41:32 ----D---- C:\Windows\system32\NDF
2014-12-25 11:49:04 ----AD---- C:\ProgramData\Temp
2014-12-21 19:02:17 ----D---- C:\Windows\rescache
2014-12-21 14:52:33 ----D---- C:\Windows\SysWOW64
2014-12-21 11:30:12 ----D---- C:\Windows\winsxs
2014-12-20 11:58:11 ----D---- C:\Program Files (x86)\Google
2014-12-20 11:55:39 ----D---- C:\ProgramData\IObit
2014-12-20 11:55:38 ----D---- C:\Users\asus\AppData\Roaming\IObit
2014-12-20 11:54:36 ----D---- C:\Program Files (x86)\IObit
2014-12-20 11:30:09 ----D---- C:\ProgramData\Razer
2014-12-20 10:45:49 ----D---- C:\Windows\SYSWOW64\drivers
2014-12-20 10:37:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2014-12-18 20:48:00 ----D---- C:\Windows\Microsoft.NET
2014-12-18 14:58:28 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-12-18 14:56:28 ----SHD---- C:\Config.Msi
2014-12-16 17:14:59 ----SHD---- C:\Windows\Installer
2014-12-16 17:14:46 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-12-13 15:20:53 ----D---- C:\Windows
2014-12-13 15:14:33 ----SD---- C:\Windows\system32\CompatTel
2014-12-13 15:14:33 ----D---- C:\Windows\AppCompat
2014-12-13 15:14:32 ----SD---- C:\ProgramData\Microsoft
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\hr-HR
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\bg-BG
2014-12-13 15:14:31 ----D---- C:\Program Files\Internet Explorer
2014-12-13 15:14:31 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sl-SI
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\ro-RO
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lv-LV
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lt-LT
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\et-EE
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sr-Latn-CS
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sl-SI
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sk-SK
2014-12-13 15:14:29 ----D---- C:\Windows\system32\ro-RO
2014-12-13 15:14:29 ----D---- C:\Windows\system32\pl-PL
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lv-LV
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lt-LT
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hu-HU
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hr-HR
2014-12-13 15:14:29 ----D---- C:\Windows\system32\et-EE
2014-12-13 15:14:29 ----D---- C:\Windows\system32\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\bg-BG
2014-12-13 15:14:28 ----D---- C:\Windows\system32\en-US
2014-12-13 15:14:28 ----D---- C:\Windows\PolicyDefinitions
2014-12-13 14:40:14 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 11:13:33 ----D---- C:\Windows\system32\MRT
2014-12-11 11:02:39 ----D---- C:\Windows\debug
2014-12-11 11:02:36 ----A---- C:\Windows\system32\MRT.exe
2014-12-11 09:17:11 ----D---- C:\Windows\system32\catroot2
2014-12-10 08:56:59 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-12-10 08:56:55 ----D---- C:\Windows\Minidump
2014-12-10 08:56:55 ----D---- C:\Windows\Logs
2014-12-09 23:23:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-09 23:04:24 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-12-07 12:50:22 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-12-07 03:00:36 ----D---- C:\ProgramData\Origin
2014-12-06 12:38:00 ----D---- C:\Windows\SYSWOW64\directx
2014-11-29 01:40:56 ----D---- C:\Users\asus\AppData\Roaming\Skype
2014-11-28 23:46:51 ----D---- C:\Program Files (x86)\Common Files
2014-11-28 23:46:29 ----D---- C:\ProgramData\Skype
2014-11-19 09:47:55 ----D---- C:\Users
2014-11-17 21:22:03 ----D---- C:\Windows\system32\drivers\etc
2014-11-16 02:52:42 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-11-14 16:08:38 ----A---- C:\Windows\win.ini
2014-11-13 17:56:28 ----RSD---- C:\Windows\assembly
2014-11-12 21:01:00 ----RSD---- C:\Windows\Fonts
2014-11-10 14:07:37 ----SHD---- C:\Boot
2014-11-06 18:39:25 ----D---- C:\Windows\Tasks
2014-11-01 10:55:30 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-10-31 22:20:42 ----D---- C:\Windows\system32\GroupPolicy
2014-10-31 20:36:25 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-10-31 19:35:58 ----D---- C:\Windows\system32\DriverStore
2014-10-31 16:04:08 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-10-31 09:40:20 ----D---- C:\Program Files\Common Files
2014-10-31 09:12:14 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Pro
2014-10-31 00:29:25 ----D---- C:\Windows\system32\catroot
2014-10-30 12:25:26 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-29 23:22:36 ----D---- C:\ProgramData\HostIt
2014-10-28 14:47:42 ----D---- C:\ProgramData\Oracle
2014-10-27 19:58:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-27 19:46:49 ----D---- C:\Program Files (x86)\Microsoft
2014-10-27 19:29:19 ----D---- C:\Users\asus\AppData\Roaming\Ubisoft
2014-10-16 13:52:40 ----D---- C:\Program Files\Windows Media Player
2014-10-16 13:52:40 ----D---- C:\Program Files (x86)\Windows Media Player
2014-10-16 13:52:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 13:52:37 ----D---- C:\Windows\system32\Dism
2014-10-16 13:52:30 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 13:52:30 ----D---- C:\Windows\system32\Boot
2014-10-12 11:02:27 ----D---- C:\Users\asus\AppData\Roaming\Tropico 5
2014-10-04 22:21:07 ----D---- C:\Users\asus\AppData\Roaming\Samsung
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 afw;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2010-04-20 39528]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SandBox;SandBox; \??\C:\Windows\system32\drivers\SandBox64.sys [2011-03-21 1097672]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 afwcore;afwcore; C:\Windows\system32\drivers\afwcore.sys [2010-09-27 424040]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 ASWFilt;ASWFilt; \??\C:\Windows\system32\Filt\ASWFilt64.dll [2011-03-21 49168]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-03 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
R3 VBEngNT;VBEngNT; \??\C:\Windows\system32\drivers\VBEngNT.sys [2011-02-02 293048]
R3 VBFilt;VBFilt; \??\C:\Windows\system32\Filt\VBFilt64.dll [2011-03-21 42976]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S1 dswafkle;dswafkle; \??\C:\Windows\system32\drivers\dswafkle.sys []
S1 fhkkqfgk;fhkkqfgk; \??\C:\Windows\system32\drivers\fhkkqfgk.sys []
S1 kindgpjk;kindgpjk; \??\C:\Windows\system32\drivers\kindgpjk.sys []
S1 pawjfgeg;pawjfgeg; \??\C:\Windows\system32\drivers\pawjfgeg.sys []
S1 pumhksnc;pumhksnc; \??\C:\Windows\system32\drivers\pumhksnc.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-08 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624]
S2 acssrv;Agnitum Client Security Service; D:\OUTPOS~1\acs.exe [2011-04-04 3501696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-12-20 2631456]
S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2014-12-07 1900400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
-----------------EOF-----------------
Run by asus at 2015-01-02 23:21:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 28 GB (14%) free of 200 GB
Total RAM: 4000 MB (51% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 3406656
\??\C:\Windows\system32\conhost.exe "-854457061274174485-781525629-1104573313433806671582487266-21225636951744202831
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {A9791E34-9DE8-42C4-AAC4-0BB88D43170B}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\Explorer.EXE
taskeng.exe {66A38CC0-039D-4E27-AA2F-A687742B13FC}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
taskeng.exe {C438A447-D926-42B6-927C-E308185683DF}
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Outpost security Firewall\op_mon.exe" /tray /noservice
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\AsScrPro.exe"
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "-55679392713796959811110571777-1252763949-13370709941228160329-117066439-1431163409
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "20365564881350387228-1902477060-1287606132-1727391727407603152-1773238311682790912
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "664" "660"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1100" "1096"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "172" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1260" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "172" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "1260"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "172"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
WLIDSvcM.exe 4112
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "820" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "832" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "820"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "832"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"D:\IObit Uninstaller\UninstallMonitor.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4c848472-66c4-4b92-9b29-e6d957a31380 -SystemEventPortName:HostProcess-eab27169-aa31-41fa-b990-bb5e6e6aa07f -IoCancelEventPortName:HostProcess-2b817df9-82d4-42c1-826b-ab817dd436bb -NonStateChangingEventPortName:HostProcess-5c055584-5bbc-4d4d-b3f3-a4d7a5d5cc97 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bbef9df2-a8af-46db-994b-ce11661c3e0a -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\asus\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - D:\IObit Uninstaller\UninstallExplorer64.dll [2014-12-20 2471744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-28 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-28 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288]
"OutpostMonitor"=D:\OUTPOS~1\op_mon.exe [2011-04-04 4510072]
"OutpostFeedBack"=D:\Outpost security Firewall\feedback.exe [2011-03-30 808064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2013-09-20 3666224]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2014-12-08 3563520]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2014-08-22 2281248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe [2014-12-08 567880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-12 3391712]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-19 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="d:\outpos~1\wl_hoo~1.dll c:\windows\jaksta\ac\x64\jaudcap.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2015-01-01 22:08:45 ----D---- C:\Program Files\trend micro
2015-01-01 22:08:37 ----D---- C:\rsit
2015-01-01 17:23:32 ----D---- C:\Users\asus\AppData\Roaming\PowerISO
2015-01-01 17:22:16 ----A---- C:\Windows\system32\drivers\scdemu.sys
2015-01-01 17:22:05 ----D---- C:\Program Files\PowerISO
2015-01-01 15:41:09 ----D---- C:\Program Files (x86)\7-Zip
2014-12-28 16:19:44 ----D---- C:\Users\asus\AppData\Roaming\SitNGoWizard
2014-12-25 11:04:37 ----D---- C:\ProgramData\Oberon Media
2014-12-21 15:00:04 ----D---- C:\Program Files (x86)\SpeedFan
2014-12-21 14:59:45 ----D---- C:\Users\asus\AppData\Roaming\Roaming
2014-12-21 14:59:41 ----D---- C:\HM2Archive
2014-12-21 14:59:18 ----D---- C:\Users\asus\AppData\Roaming\HEM Data
2014-12-21 14:51:37 ----D---- C:\ProgramData\XHEO INC
2014-12-21 14:51:00 ----D---- C:\Users\asus\AppData\Roaming\HoldemManager
2014-12-21 14:33:07 ----D---- C:\Program Files (x86)\Holdem Manager 2
2014-12-21 14:32:50 ----D---- C:\Program Files (x86)\PSQLINSTALL
2014-12-18 15:17:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-18 15:17:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-13 15:14:32 ----D---- C:\Windows\system32\appraiser
2014-12-11 09:18:07 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 09:18:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\appraiser.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aepic.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aeinv.dll
2014-12-11 09:17:59 ----A---- C:\Windows\system32\invagent.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\generaltel.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\devinv.dll
2014-12-11 09:17:57 ----A---- C:\Windows\system32\aepdu.dll
2014-12-11 09:17:30 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-11 09:12:53 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 09:12:53 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 09:12:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 09:12:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 09:12:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 09:12:47 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 09:12:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 09:12:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-11 09:12:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 09:12:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 09:12:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 09:12:39 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 09:12:38 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 09:12:36 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 09:12:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 09:12:30 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\ieui.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 09:12:21 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 09:12:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 09:12:19 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 09:12:11 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 09:04:52 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-11 09:04:52 ----A---- C:\Windows\system32\charmap.exe
2014-12-11 09:04:51 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-11 09:04:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-11 09:04:43 ----A---- C:\Windows\system32\tzres.dll
2014-12-10 08:25:54 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-10 08:25:51 ----A---- C:\Windows\system32\mf.dll
2014-12-09 23:22:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-12-06 13:03:44 ----D---- C:\Program Files (x86)\GPU-Z
2014-12-06 12:36:20 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-12-01 16:33:28 ----D---- C:\ProgramData\ManiaPlanet
2014-11-28 23:53:36 ----D---- C:\Users\asus\AppData\Roaming\puush
2014-11-28 23:53:14 ----D---- C:\Program Files (x86)\puush
2014-11-28 23:47:33 ----D---- C:\Program Files\OBS
2014-11-28 23:46:49 ----RD---- C:\Program Files (x86)\Skype
2014-11-28 23:39:18 ----D---- C:\Users\asus\AppData\Roaming\TeamViewer
2014-11-28 23:30:59 ----D---- C:\ProgramData\LogMeIn
2014-11-23 22:17:13 ----D---- C:\ProgramData\tmp
2014-11-23 22:17:12 ----D---- C:\ProgramData\hps
2014-11-23 22:10:35 ----D---- C:\Program Files\Fotolab
2014-11-19 09:44:29 ----D---- C:\Program Files\PostgreSQL
2014-11-19 08:53:09 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 08:53:09 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 08:53:08 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 08:53:07 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 04:31:16 ----A---- C:\Windows\SYSWOW64\FM20.DLL
2014-11-18 10:58:52 ----D---- C:\ProgramData\SystemExplorer
2014-11-15 16:35:28 ----D---- C:\ProgramData\RegRun
2014-11-12 17:05:09 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 17:05:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 17:05:08 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 17:05:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 17:05:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 17:05:03 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 17:05:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 17:02:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 17:02:13 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 17:02:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 17:02:12 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 17:02:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:02:10 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 17:02:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 17:02:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 17:01:59 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 17:01:59 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 17:01:11 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 17:01:11 ----A---- C:\Windows\system32\packager.dll
2014-11-12 17:01:10 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 17:01:07 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 17:01:07 ----A---- C:\Windows\system32\msi.dll
2014-11-12 17:00:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 17:00:38 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-09 15:03:15 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll20141109150311.dll
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2014-11-09 12:54:08 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-11-06 18:38:27 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-11-01 10:51:33 ----D---- C:\hotfix
2014-10-31 21:50:40 ----D---- C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4
2014-10-31 19:34:20 ----D---- C:\Program Files (x86)\OpenVPN Technologies
2014-10-31 15:47:09 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2014-10-31 09:08:19 ----D---- C:\Program Files\CCleaner
2014-10-30 13:10:37 ----A---- C:\Windows\system32\drivers\VBEngNT.sys
2014-10-30 13:10:36 ----A---- C:\Windows\system32\drivers\SandBox64.sys
2014-10-30 13:10:23 ----A---- C:\Windows\system32\drivers\afwcore.sys
2014-10-30 13:09:16 ----A---- C:\Windows\system32\drivers\afw.sys
2014-10-30 13:08:08 ----D---- C:\Windows\system32\Filt
2014-10-30 13:08:08 ----D---- C:\Users\asus\AppData\Roaming\Agnitum
2014-10-30 13:07:11 ----D---- C:\ProgramData\Agnitum
2014-10-30 09:29:24 ----A---- C:\Windows\SYSWOW64\PARTIZAN.TXT
2014-10-30 00:09:54 ----D---- C:\ProgramData\YTAHELPER.del
2014-10-29 23:25:59 ----A---- C:\Windows\system32\Partizan.exe
2014-10-29 23:24:24 ----D---- C:\@RestoreQuarantine
2014-10-29 22:37:42 ----RASHOT---- C:\Windows\winstart.bat
2014-10-29 20:42:05 ----A---- C:\autoexec.bat
2014-10-29 20:41:20 ----D---- C:\Program Files\Enigma Software Group
2014-10-29 20:39:41 ----D---- C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP
2014-10-29 20:08:53 ----D---- C:\Users\asus\AppData\Roaming\Runscanner.net
2014-10-28 14:40:45 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-28 14:40:18 ----D---- C:\Program Files (x86)\Java
2014-10-26 16:52:00 ----D---- C:\Program Files (x86)\WinPcap
2014-10-18 19:27:29 ----D---- C:\Program Files (x86)\Xiph.Org
2014-10-15 14:32:08 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 14:31:47 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 14:31:45 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 14:31:21 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 14:31:21 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 14:31:20 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 14:31:19 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 14:31:17 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 14:31:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 14:31:15 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 14:31:13 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 14:31:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 14:31:11 ----A---- C:\Windows\system32\ci.dll
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winload.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 14:31:08 ----A---- C:\Windows\system32\evr.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 14:31:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 14:31:06 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 14:31:05 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 14:31:03 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 14:31:03 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 14:31:02 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 14:31:01 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 14:31:00 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 14:30:59 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 14:30:59 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 14:30:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 14:30:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 14:30:57 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 14:30:57 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 14:30:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 14:30:55 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 14:30:54 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 14:28:00 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 14:27:59 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 14:27:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 14:27:49 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 14:27:47 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 14:27:31 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 14:27:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-13 14:33:59 ----SHD---- C:\found.000
2014-10-12 12:45:22 ----D---- C:\Users\asus\AppData\Roaming\Steam
2014-10-04 22:26:48 ----D---- C:\Program Files\SAMSUNG
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-04 22:20:35 ----D---- C:\Program Files (x86)\Samsung
======List of files/folders modified in the last 3 months======
2015-01-02 23:21:34 ----D---- C:\Windows\Temp
2015-01-02 23:15:38 ----A---- C:\Windows\SYSWOW64\log.txt
2015-01-02 23:14:25 ----D---- C:\Windows\system32\config
2015-01-02 23:13:17 ----D---- C:\Windows\system32\Tasks
2015-01-01 23:21:08 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-01-01 22:46:45 ----D---- C:\ProgramData\ProductData
2015-01-01 22:41:42 ----D---- C:\AdwCleaner
2015-01-01 22:41:37 ----HD---- C:\ProgramData
2015-01-01 22:08:45 ----RD---- C:\Program Files
2015-01-01 18:20:19 ----D---- C:\Windows\system32\drivers
2015-01-01 18:18:56 ----SHD---- C:\System Volume Information
2015-01-01 18:05:44 ----D---- C:\Windows\System32
2015-01-01 18:05:44 ----D---- C:\Windows\inf
2015-01-01 18:05:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-01 15:41:09 ----RD---- C:\Program Files (x86)
2015-01-01 14:42:13 ----D---- C:\Windows\Prefetch
2014-12-28 10:41:32 ----D---- C:\Windows\system32\NDF
2014-12-25 11:49:04 ----AD---- C:\ProgramData\Temp
2014-12-21 19:02:17 ----D---- C:\Windows\rescache
2014-12-21 14:52:33 ----D---- C:\Windows\SysWOW64
2014-12-21 11:30:12 ----D---- C:\Windows\winsxs
2014-12-20 11:58:11 ----D---- C:\Program Files (x86)\Google
2014-12-20 11:55:39 ----D---- C:\ProgramData\IObit
2014-12-20 11:55:38 ----D---- C:\Users\asus\AppData\Roaming\IObit
2014-12-20 11:54:36 ----D---- C:\Program Files (x86)\IObit
2014-12-20 11:30:09 ----D---- C:\ProgramData\Razer
2014-12-20 10:45:49 ----D---- C:\Windows\SYSWOW64\drivers
2014-12-20 10:37:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2014-12-18 20:48:00 ----D---- C:\Windows\Microsoft.NET
2014-12-18 14:58:28 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-12-18 14:56:28 ----SHD---- C:\Config.Msi
2014-12-16 17:14:59 ----SHD---- C:\Windows\Installer
2014-12-16 17:14:46 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-12-13 15:20:53 ----D---- C:\Windows
2014-12-13 15:14:33 ----SD---- C:\Windows\system32\CompatTel
2014-12-13 15:14:33 ----D---- C:\Windows\AppCompat
2014-12-13 15:14:32 ----SD---- C:\ProgramData\Microsoft
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\hr-HR
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\bg-BG
2014-12-13 15:14:31 ----D---- C:\Program Files\Internet Explorer
2014-12-13 15:14:31 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sl-SI
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\ro-RO
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lv-LV
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lt-LT
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\et-EE
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sr-Latn-CS
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sl-SI
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sk-SK
2014-12-13 15:14:29 ----D---- C:\Windows\system32\ro-RO
2014-12-13 15:14:29 ----D---- C:\Windows\system32\pl-PL
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lv-LV
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lt-LT
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hu-HU
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hr-HR
2014-12-13 15:14:29 ----D---- C:\Windows\system32\et-EE
2014-12-13 15:14:29 ----D---- C:\Windows\system32\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\bg-BG
2014-12-13 15:14:28 ----D---- C:\Windows\system32\en-US
2014-12-13 15:14:28 ----D---- C:\Windows\PolicyDefinitions
2014-12-13 14:40:14 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 11:13:33 ----D---- C:\Windows\system32\MRT
2014-12-11 11:02:39 ----D---- C:\Windows\debug
2014-12-11 11:02:36 ----A---- C:\Windows\system32\MRT.exe
2014-12-11 09:17:11 ----D---- C:\Windows\system32\catroot2
2014-12-10 08:56:59 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-12-10 08:56:55 ----D---- C:\Windows\Minidump
2014-12-10 08:56:55 ----D---- C:\Windows\Logs
2014-12-09 23:23:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-09 23:04:24 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-12-07 12:50:22 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-12-07 03:00:36 ----D---- C:\ProgramData\Origin
2014-12-06 12:38:00 ----D---- C:\Windows\SYSWOW64\directx
2014-11-29 01:40:56 ----D---- C:\Users\asus\AppData\Roaming\Skype
2014-11-28 23:46:51 ----D---- C:\Program Files (x86)\Common Files
2014-11-28 23:46:29 ----D---- C:\ProgramData\Skype
2014-11-19 09:47:55 ----D---- C:\Users
2014-11-17 21:22:03 ----D---- C:\Windows\system32\drivers\etc
2014-11-16 02:52:42 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-11-14 16:08:38 ----A---- C:\Windows\win.ini
2014-11-13 17:56:28 ----RSD---- C:\Windows\assembly
2014-11-12 21:01:00 ----RSD---- C:\Windows\Fonts
2014-11-10 14:07:37 ----SHD---- C:\Boot
2014-11-06 18:39:25 ----D---- C:\Windows\Tasks
2014-11-01 10:55:30 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-10-31 22:20:42 ----D---- C:\Windows\system32\GroupPolicy
2014-10-31 20:36:25 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-10-31 19:35:58 ----D---- C:\Windows\system32\DriverStore
2014-10-31 16:04:08 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-10-31 09:40:20 ----D---- C:\Program Files\Common Files
2014-10-31 09:12:14 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Pro
2014-10-31 00:29:25 ----D---- C:\Windows\system32\catroot
2014-10-30 12:25:26 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-29 23:22:36 ----D---- C:\ProgramData\HostIt
2014-10-28 14:47:42 ----D---- C:\ProgramData\Oracle
2014-10-27 19:58:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-27 19:46:49 ----D---- C:\Program Files (x86)\Microsoft
2014-10-27 19:29:19 ----D---- C:\Users\asus\AppData\Roaming\Ubisoft
2014-10-16 13:52:40 ----D---- C:\Program Files\Windows Media Player
2014-10-16 13:52:40 ----D---- C:\Program Files (x86)\Windows Media Player
2014-10-16 13:52:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 13:52:37 ----D---- C:\Windows\system32\Dism
2014-10-16 13:52:30 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 13:52:30 ----D---- C:\Windows\system32\Boot
2014-10-12 11:02:27 ----D---- C:\Users\asus\AppData\Roaming\Tropico 5
2014-10-04 22:21:07 ----D---- C:\Users\asus\AppData\Roaming\Samsung
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 afw;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2010-04-20 39528]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SandBox;SandBox; \??\C:\Windows\system32\drivers\SandBox64.sys [2011-03-21 1097672]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 afwcore;afwcore; C:\Windows\system32\drivers\afwcore.sys [2010-09-27 424040]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 ASWFilt;ASWFilt; \??\C:\Windows\system32\Filt\ASWFilt64.dll [2011-03-21 49168]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-03 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
R3 VBEngNT;VBEngNT; \??\C:\Windows\system32\drivers\VBEngNT.sys [2011-02-02 293048]
R3 VBFilt;VBFilt; \??\C:\Windows\system32\Filt\VBFilt64.dll [2011-03-21 42976]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S1 dswafkle;dswafkle; \??\C:\Windows\system32\drivers\dswafkle.sys []
S1 fhkkqfgk;fhkkqfgk; \??\C:\Windows\system32\drivers\fhkkqfgk.sys []
S1 kindgpjk;kindgpjk; \??\C:\Windows\system32\drivers\kindgpjk.sys []
S1 pawjfgeg;pawjfgeg; \??\C:\Windows\system32\drivers\pawjfgeg.sys []
S1 pumhksnc;pumhksnc; \??\C:\Windows\system32\drivers\pumhksnc.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-08 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624]
S2 acssrv;Agnitum Client Security Service; D:\OUTPOS~1\acs.exe [2011-04-04 3501696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-12-20 2631456]
S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2014-12-07 1900400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
-----------------EOF-----------------
Re: Zaneřáděný NTB
Omlouvám se, že tak pozdě, ale byl jsem v práci 
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zaneřáděný NTB
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\winstart.bat
C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP
:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
:services
dswafkle
fhkkqfgk
kindgpjk
pawjfgeg
pumhksnc
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zaneřáděný NTB
Musel jsem vypnout Outpost Security Suite, začal mě blokovat RSIT.
Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-01-03 12:54:32
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 32 GB (16%) free of 200 GB
Total RAM: 4000 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:55:22, on 3.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\SysWOW64\ACEngSvr.exe
D:\IObit Uninstaller\UninstallMonitor.exe
D:\WhatPulse2\whatpulse.exe
C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Program Files\trend micro\asus.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
O4 - HKCU\..\Run: [WhatPulse] "D:\WhatPulse2\whatpulse.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C294DF9-8A39-4845-8304-97AF13BD3791}: Domain = ncpa.cpl
O18 - Protocol: tmbp - (no CLSID) - (no file)
O18 - Protocol: tmpx - (no CLSID) - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: d:\outpos~1\wl_hook.dll c:\windows\jaksta\ac\x86\jaudcap.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - D:\OUTPOS~1\acs.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: postgresql-x64-9.0 - PostgreSQL Server 9.0 (postgresql-x64-9.0) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe
O23 - Service: postgresql-x64-9.3 - PostgreSQL Server 9.3 (postgresql-x64-9.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - D:\System Explorer\service\SystemExplorerService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 13250 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 38944560
\??\C:\Windows\system32\conhost.exe "-1100532690-1950548931-193621614-39592101390794097888970407412005756351634718873
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {244E5EA7-0DFD-4230-BC22-B41AF96AF3DE}
C:\Windows\System32\spoolsv.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
D:\OUTPOS~1\acs.exe
taskeng.exe {89851428-9269-4C0B-9E4D-D112BF4624BE}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe"
taskeng.exe {62935382-545A-4727-816D-21E58D2EFA30}
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "9830147791752579228-48168497921011544284856954611972104913122261592642801591
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "228631015-653063027-18533572981687939655948237266-215443034127306092-242843378
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "664" "660"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1100" "1096"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "820" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "836" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "820"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "836"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1260" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1264" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1260" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "1264"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "1260"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
WLIDSvcM.exe 3940
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a7090a59-afce-4d3c-8647-2bdf14f5ea79 -SystemEventPortName:HostProcess-73575027-db67-40f2-9396-7462faea20f3 -IoCancelEventPortName:HostProcess-94023710-bef2-4179-a7f9-04631b6007b3 -NonStateChangingEventPortName:HostProcess-2ea6be0a-27cc-4856-a821-37482e16d3fb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d4349dbd-a550-47e5-82ad-4a9b335f25d3 -DeviceGroupId:WpdFsGroup
"D:\IObit Uninstaller\UninstallMonitor.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Outpost security Firewall\op_mon.exe" /tray /noservice
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Users\asus\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - D:\IObit Uninstaller\UninstallExplorer64.dll [2014-12-20 2471744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-28 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-28 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288]
"OutpostMonitor"=D:\OUTPOS~1\op_mon.exe [2011-04-04 4510072]
"OutpostFeedBack"=D:\Outpost security Firewall\feedback.exe [2011-03-30 808064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2013-09-20 3666224]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2014-12-08 3563520]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2014-08-22 2281248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe [2014-12-08 567880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-12 3391712]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-19 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="d:\outpos~1\wl_hoo~1.dll c:\windows\jaksta\ac\x64\jaudcap.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2015-01-03 12:43:05 ----D---- C:\_OTM
2015-01-01 22:08:45 ----D---- C:\Program Files\trend micro
2015-01-01 22:08:37 ----D---- C:\rsit
2015-01-01 17:23:32 ----D---- C:\Users\asus\AppData\Roaming\PowerISO
2015-01-01 17:22:16 ----A---- C:\Windows\system32\drivers\scdemu.sys
2015-01-01 17:22:05 ----D---- C:\Program Files\PowerISO
2015-01-01 15:41:09 ----D---- C:\Program Files (x86)\7-Zip
2014-12-28 16:19:44 ----D---- C:\Users\asus\AppData\Roaming\SitNGoWizard
2014-12-25 11:04:37 ----D---- C:\ProgramData\Oberon Media
2014-12-21 15:00:04 ----D---- C:\Program Files (x86)\SpeedFan
2014-12-21 14:59:45 ----D---- C:\Users\asus\AppData\Roaming\Roaming
2014-12-21 14:59:41 ----D---- C:\HM2Archive
2014-12-21 14:59:18 ----D---- C:\Users\asus\AppData\Roaming\HEM Data
2014-12-21 14:51:37 ----D---- C:\ProgramData\XHEO INC
2014-12-21 14:51:00 ----D---- C:\Users\asus\AppData\Roaming\HoldemManager
2014-12-21 14:33:07 ----D---- C:\Program Files (x86)\Holdem Manager 2
2014-12-21 14:32:50 ----D---- C:\Program Files (x86)\PSQLINSTALL
2014-12-18 15:17:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-18 15:17:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-13 15:14:32 ----D---- C:\Windows\system32\appraiser
2014-12-11 09:18:07 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 09:18:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\appraiser.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aepic.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aeinv.dll
2014-12-11 09:17:59 ----A---- C:\Windows\system32\invagent.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\generaltel.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\devinv.dll
2014-12-11 09:17:57 ----A---- C:\Windows\system32\aepdu.dll
2014-12-11 09:17:30 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-11 09:12:53 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 09:12:53 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 09:12:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 09:12:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 09:12:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 09:12:47 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 09:12:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 09:12:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-11 09:12:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 09:12:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 09:12:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 09:12:39 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 09:12:38 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 09:12:36 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 09:12:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 09:12:30 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\ieui.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 09:12:21 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 09:12:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 09:12:19 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 09:12:11 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 09:04:52 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-11 09:04:52 ----A---- C:\Windows\system32\charmap.exe
2014-12-11 09:04:51 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-11 09:04:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-11 09:04:43 ----A---- C:\Windows\system32\tzres.dll
2014-12-10 08:25:54 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-10 08:25:51 ----A---- C:\Windows\system32\mf.dll
2014-12-09 23:22:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-12-06 13:03:44 ----D---- C:\Program Files (x86)\GPU-Z
2014-12-06 12:36:20 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-12-01 16:33:28 ----D---- C:\ProgramData\ManiaPlanet
2014-11-28 23:53:36 ----D---- C:\Users\asus\AppData\Roaming\puush
2014-11-28 23:53:14 ----D---- C:\Program Files (x86)\puush
2014-11-28 23:47:33 ----D---- C:\Program Files\OBS
2014-11-28 23:46:49 ----RD---- C:\Program Files (x86)\Skype
2014-11-28 23:39:18 ----D---- C:\Users\asus\AppData\Roaming\TeamViewer
2014-11-28 23:30:59 ----D---- C:\ProgramData\LogMeIn
2014-11-23 22:17:13 ----D---- C:\ProgramData\tmp
2014-11-23 22:17:12 ----D---- C:\ProgramData\hps
2014-11-23 22:10:35 ----D---- C:\Program Files\Fotolab
2014-11-19 09:44:29 ----D---- C:\Program Files\PostgreSQL
2014-11-19 08:53:09 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 08:53:09 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 08:53:08 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 08:53:07 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 04:31:16 ----A---- C:\Windows\SYSWOW64\FM20.DLL
2014-11-18 10:58:52 ----D---- C:\ProgramData\SystemExplorer
2014-11-15 16:35:28 ----D---- C:\ProgramData\RegRun
2014-11-12 17:05:09 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 17:05:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 17:05:08 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 17:05:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 17:05:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 17:05:03 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 17:05:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 17:02:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 17:02:13 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 17:02:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 17:02:12 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 17:02:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:02:10 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 17:02:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 17:02:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 17:01:59 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 17:01:59 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 17:01:11 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 17:01:11 ----A---- C:\Windows\system32\packager.dll
2014-11-12 17:01:10 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 17:01:07 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 17:01:07 ----A---- C:\Windows\system32\msi.dll
2014-11-12 17:00:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 17:00:38 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-09 15:03:15 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll20141109150311.dll
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2014-11-09 12:54:08 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-11-06 18:38:27 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-11-01 10:51:33 ----D---- C:\hotfix
2014-10-31 21:50:40 ----D---- C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4
2014-10-31 19:34:20 ----D---- C:\Program Files (x86)\OpenVPN Technologies
2014-10-31 15:47:09 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2014-10-31 09:08:19 ----D---- C:\Program Files\CCleaner
2014-10-30 13:10:37 ----A---- C:\Windows\system32\drivers\VBEngNT.sys
2014-10-30 13:10:36 ----A---- C:\Windows\system32\drivers\SandBox64.sys
2014-10-30 13:10:23 ----A---- C:\Windows\system32\drivers\afwcore.sys
2014-10-30 13:09:16 ----A---- C:\Windows\system32\drivers\afw.sys
2014-10-30 13:08:08 ----D---- C:\Windows\system32\Filt
2014-10-30 13:08:08 ----D---- C:\Users\asus\AppData\Roaming\Agnitum
2014-10-30 13:07:11 ----D---- C:\ProgramData\Agnitum
2014-10-30 09:29:24 ----A---- C:\Windows\SYSWOW64\PARTIZAN.TXT
2014-10-30 00:09:54 ----D---- C:\ProgramData\YTAHELPER.del
2014-10-29 23:25:59 ----A---- C:\Windows\system32\Partizan.exe
2014-10-29 23:24:24 ----D---- C:\@RestoreQuarantine
2014-10-29 20:42:05 ----A---- C:\autoexec.bat
2014-10-29 20:41:20 ----D---- C:\Program Files\Enigma Software Group
2014-10-29 20:08:53 ----D---- C:\Users\asus\AppData\Roaming\Runscanner.net
2014-10-28 14:40:45 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-28 14:40:18 ----D---- C:\Program Files (x86)\Java
2014-10-26 16:52:00 ----D---- C:\Program Files (x86)\WinPcap
2014-10-18 19:27:29 ----D---- C:\Program Files (x86)\Xiph.Org
2014-10-15 14:32:08 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 14:31:47 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 14:31:45 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 14:31:21 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 14:31:21 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 14:31:20 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 14:31:19 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 14:31:17 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 14:31:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 14:31:15 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 14:31:13 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 14:31:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 14:31:11 ----A---- C:\Windows\system32\ci.dll
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winload.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 14:31:08 ----A---- C:\Windows\system32\evr.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 14:31:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 14:31:06 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 14:31:05 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 14:31:03 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 14:31:03 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 14:31:02 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 14:31:01 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 14:31:00 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 14:30:59 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 14:30:59 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 14:30:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 14:30:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 14:30:57 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 14:30:57 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 14:30:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 14:30:55 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 14:30:54 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 14:28:00 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 14:27:59 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 14:27:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 14:27:49 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 14:27:47 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 14:27:31 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 14:27:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-13 14:33:59 ----SHD---- C:\found.000
2014-10-12 12:45:22 ----D---- C:\Users\asus\AppData\Roaming\Steam
2014-10-04 22:26:48 ----D---- C:\Program Files\SAMSUNG
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-04 22:20:35 ----D---- C:\Program Files (x86)\Samsung
======List of files/folders modified in the last 3 months======
2015-01-03 12:53:32 ----D---- C:\Windows\Temp
2015-01-03 12:52:41 ----A---- C:\Windows\SYSWOW64\log.txt
2015-01-03 12:50:37 ----D---- C:\Windows\system32\config
2015-01-03 12:49:55 ----D---- C:\Windows\system32\Tasks
2015-01-03 12:44:16 ----D---- C:\Windows\SysWOW64
2015-01-03 12:43:15 ----D---- C:\Windows\Tasks
2015-01-03 12:43:15 ----D---- C:\Windows
2015-01-02 23:26:48 ----SHD---- C:\System Volume Information
2015-01-01 23:21:08 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-01-01 22:46:45 ----D---- C:\ProgramData\ProductData
2015-01-01 22:41:42 ----D---- C:\AdwCleaner
2015-01-01 22:41:37 ----HD---- C:\ProgramData
2015-01-01 22:08:45 ----RD---- C:\Program Files
2015-01-01 18:20:19 ----D---- C:\Windows\system32\drivers
2015-01-01 18:05:44 ----D---- C:\Windows\System32
2015-01-01 18:05:44 ----D---- C:\Windows\inf
2015-01-01 18:05:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-01 15:41:09 ----RD---- C:\Program Files (x86)
2015-01-01 14:42:13 ----D---- C:\Windows\Prefetch
2014-12-28 10:41:32 ----D---- C:\Windows\system32\NDF
2014-12-25 11:49:04 ----AD---- C:\ProgramData\Temp
2014-12-21 19:02:17 ----D---- C:\Windows\rescache
2014-12-21 11:30:12 ----D---- C:\Windows\winsxs
2014-12-20 11:58:11 ----D---- C:\Program Files (x86)\Google
2014-12-20 11:55:39 ----D---- C:\ProgramData\IObit
2014-12-20 11:55:38 ----D---- C:\Users\asus\AppData\Roaming\IObit
2014-12-20 11:54:36 ----D---- C:\Program Files (x86)\IObit
2014-12-20 11:30:09 ----D---- C:\ProgramData\Razer
2014-12-20 10:45:49 ----D---- C:\Windows\SYSWOW64\drivers
2014-12-20 10:37:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2014-12-18 20:48:00 ----D---- C:\Windows\Microsoft.NET
2014-12-18 14:58:28 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-12-18 14:56:28 ----SHD---- C:\Config.Msi
2014-12-16 17:14:59 ----SHD---- C:\Windows\Installer
2014-12-16 17:14:46 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-12-13 15:14:33 ----SD---- C:\Windows\system32\CompatTel
2014-12-13 15:14:33 ----D---- C:\Windows\AppCompat
2014-12-13 15:14:32 ----SD---- C:\ProgramData\Microsoft
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\hr-HR
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\bg-BG
2014-12-13 15:14:31 ----D---- C:\Program Files\Internet Explorer
2014-12-13 15:14:31 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sl-SI
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\ro-RO
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lv-LV
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lt-LT
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\et-EE
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sr-Latn-CS
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sl-SI
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sk-SK
2014-12-13 15:14:29 ----D---- C:\Windows\system32\ro-RO
2014-12-13 15:14:29 ----D---- C:\Windows\system32\pl-PL
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lv-LV
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lt-LT
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hu-HU
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hr-HR
2014-12-13 15:14:29 ----D---- C:\Windows\system32\et-EE
2014-12-13 15:14:29 ----D---- C:\Windows\system32\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\bg-BG
2014-12-13 15:14:28 ----D---- C:\Windows\system32\en-US
2014-12-13 15:14:28 ----D---- C:\Windows\PolicyDefinitions
2014-12-13 14:40:14 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 11:13:33 ----D---- C:\Windows\system32\MRT
2014-12-11 11:02:39 ----D---- C:\Windows\debug
2014-12-11 11:02:36 ----A---- C:\Windows\system32\MRT.exe
2014-12-11 09:17:11 ----D---- C:\Windows\system32\catroot2
2014-12-10 08:56:59 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-12-10 08:56:55 ----D---- C:\Windows\Minidump
2014-12-10 08:56:55 ----D---- C:\Windows\Logs
2014-12-09 23:23:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-09 23:04:24 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-12-07 12:50:22 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-12-07 03:00:36 ----D---- C:\ProgramData\Origin
2014-12-06 12:38:00 ----D---- C:\Windows\SYSWOW64\directx
2014-11-29 01:40:56 ----D---- C:\Users\asus\AppData\Roaming\Skype
2014-11-28 23:46:51 ----D---- C:\Program Files (x86)\Common Files
2014-11-28 23:46:29 ----D---- C:\ProgramData\Skype
2014-11-19 09:47:55 ----D---- C:\Users
2014-11-17 21:22:03 ----D---- C:\Windows\system32\drivers\etc
2014-11-16 02:52:42 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-11-14 16:08:38 ----N---- C:\Windows\win.ini
2014-11-13 17:56:28 ----RSD---- C:\Windows\assembly
2014-11-12 21:01:00 ----RSD---- C:\Windows\Fonts
2014-11-10 14:07:37 ----SHD---- C:\Boot
2014-11-01 10:55:30 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-10-31 22:20:42 ----D---- C:\Windows\system32\GroupPolicy
2014-10-31 20:36:25 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-10-31 19:35:58 ----D---- C:\Windows\system32\DriverStore
2014-10-31 16:04:08 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-10-31 09:40:20 ----D---- C:\Program Files\Common Files
2014-10-31 09:12:14 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Pro
2014-10-31 00:29:25 ----D---- C:\Windows\system32\catroot
2014-10-30 12:25:26 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-29 23:22:36 ----D---- C:\ProgramData\HostIt
2014-10-28 14:47:42 ----D---- C:\ProgramData\Oracle
2014-10-27 19:58:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-27 19:46:49 ----D---- C:\Program Files (x86)\Microsoft
2014-10-27 19:29:19 ----D---- C:\Users\asus\AppData\Roaming\Ubisoft
2014-10-16 13:52:40 ----D---- C:\Program Files\Windows Media Player
2014-10-16 13:52:40 ----D---- C:\Program Files (x86)\Windows Media Player
2014-10-16 13:52:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 13:52:37 ----D---- C:\Windows\system32\Dism
2014-10-16 13:52:30 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 13:52:30 ----D---- C:\Windows\system32\Boot
2014-10-12 11:02:27 ----D---- C:\Users\asus\AppData\Roaming\Tropico 5
2014-10-04 22:21:07 ----D---- C:\Users\asus\AppData\Roaming\Samsung
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 afw;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2010-04-20 39528]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SandBox;SandBox; \??\C:\Windows\system32\drivers\SandBox64.sys [2011-03-21 1097672]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 afwcore;afwcore; C:\Windows\system32\drivers\afwcore.sys [2010-09-27 424040]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 ASWFilt;ASWFilt; \??\C:\Windows\system32\Filt\ASWFilt64.dll [2011-03-21 49168]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-03 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
R3 VBEngNT;VBEngNT; \??\C:\Windows\system32\drivers\VBEngNT.sys [2011-02-02 293048]
R3 VBFilt;VBFilt; \??\C:\Windows\system32\Filt\VBFilt64.dll [2011-03-21 42976]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-08 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624]
S2 acssrv;Agnitum Client Security Service; D:\OUTPOS~1\acs.exe [2011-04-04 3501696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-12-20 2631456]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2014-12-07 1900400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-01-03 12:54:32
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 32 GB (16%) free of 200 GB
Total RAM: 4000 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:55:22, on 3.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\SysWOW64\ACEngSvr.exe
D:\IObit Uninstaller\UninstallMonitor.exe
D:\WhatPulse2\whatpulse.exe
C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Program Files\trend micro\asus.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
O4 - HKCU\..\Run: [WhatPulse] "D:\WhatPulse2\whatpulse.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C294DF9-8A39-4845-8304-97AF13BD3791}: Domain = ncpa.cpl
O18 - Protocol: tmbp - (no CLSID) - (no file)
O18 - Protocol: tmpx - (no CLSID) - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: d:\outpos~1\wl_hook.dll c:\windows\jaksta\ac\x86\jaudcap.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - D:\OUTPOS~1\acs.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: postgresql-x64-9.0 - PostgreSQL Server 9.0 (postgresql-x64-9.0) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe
O23 - Service: postgresql-x64-9.3 - PostgreSQL Server 9.3 (postgresql-x64-9.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - D:\System Explorer\service\SystemExplorerService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 13250 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 38944560
\??\C:\Windows\system32\conhost.exe "-1100532690-1950548931-193621614-39592101390794097888970407412005756351634718873
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {244E5EA7-0DFD-4230-BC22-B41AF96AF3DE}
C:\Windows\System32\spoolsv.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
D:\OUTPOS~1\acs.exe
taskeng.exe {89851428-9269-4C0B-9E4D-D112BF4624BE}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe"
taskeng.exe {62935382-545A-4727-816D-21E58D2EFA30}
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "9830147791752579228-48168497921011544284856954611972104913122261592642801591
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "228631015-653063027-18533572981687939655948237266-215443034127306092-242843378
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "664" "660"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1100" "1096"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "820" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "836" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "820"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "836"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1260" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1264" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1260" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "1264"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "1260"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
WLIDSvcM.exe 3940
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a7090a59-afce-4d3c-8647-2bdf14f5ea79 -SystemEventPortName:HostProcess-73575027-db67-40f2-9396-7462faea20f3 -IoCancelEventPortName:HostProcess-94023710-bef2-4179-a7f9-04631b6007b3 -NonStateChangingEventPortName:HostProcess-2ea6be0a-27cc-4856-a821-37482e16d3fb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d4349dbd-a550-47e5-82ad-4a9b335f25d3 -DeviceGroupId:WpdFsGroup
"D:\IObit Uninstaller\UninstallMonitor.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Outpost security Firewall\op_mon.exe" /tray /noservice
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Users\asus\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - D:\IObit Uninstaller\UninstallExplorer64.dll [2014-12-20 2471744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-28 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-28 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288]
"OutpostMonitor"=D:\OUTPOS~1\op_mon.exe [2011-04-04 4510072]
"OutpostFeedBack"=D:\Outpost security Firewall\feedback.exe [2011-03-30 808064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2013-09-20 3666224]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2014-12-08 3563520]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2014-08-22 2281248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe [2014-12-08 567880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-12 3391712]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-19 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="d:\outpos~1\wl_hoo~1.dll c:\windows\jaksta\ac\x64\jaudcap.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2015-01-03 12:43:05 ----D---- C:\_OTM
2015-01-01 22:08:45 ----D---- C:\Program Files\trend micro
2015-01-01 22:08:37 ----D---- C:\rsit
2015-01-01 17:23:32 ----D---- C:\Users\asus\AppData\Roaming\PowerISO
2015-01-01 17:22:16 ----A---- C:\Windows\system32\drivers\scdemu.sys
2015-01-01 17:22:05 ----D---- C:\Program Files\PowerISO
2015-01-01 15:41:09 ----D---- C:\Program Files (x86)\7-Zip
2014-12-28 16:19:44 ----D---- C:\Users\asus\AppData\Roaming\SitNGoWizard
2014-12-25 11:04:37 ----D---- C:\ProgramData\Oberon Media
2014-12-21 15:00:04 ----D---- C:\Program Files (x86)\SpeedFan
2014-12-21 14:59:45 ----D---- C:\Users\asus\AppData\Roaming\Roaming
2014-12-21 14:59:41 ----D---- C:\HM2Archive
2014-12-21 14:59:18 ----D---- C:\Users\asus\AppData\Roaming\HEM Data
2014-12-21 14:51:37 ----D---- C:\ProgramData\XHEO INC
2014-12-21 14:51:00 ----D---- C:\Users\asus\AppData\Roaming\HoldemManager
2014-12-21 14:33:07 ----D---- C:\Program Files (x86)\Holdem Manager 2
2014-12-21 14:32:50 ----D---- C:\Program Files (x86)\PSQLINSTALL
2014-12-18 15:17:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-18 15:17:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-13 15:14:32 ----D---- C:\Windows\system32\appraiser
2014-12-11 09:18:07 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 09:18:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\appraiser.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aepic.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aeinv.dll
2014-12-11 09:17:59 ----A---- C:\Windows\system32\invagent.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\generaltel.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\devinv.dll
2014-12-11 09:17:57 ----A---- C:\Windows\system32\aepdu.dll
2014-12-11 09:17:30 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-11 09:12:53 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 09:12:53 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 09:12:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 09:12:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 09:12:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 09:12:47 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 09:12:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 09:12:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-11 09:12:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 09:12:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 09:12:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 09:12:39 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 09:12:38 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 09:12:36 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 09:12:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 09:12:30 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\ieui.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 09:12:21 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 09:12:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 09:12:19 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 09:12:11 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 09:04:52 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-11 09:04:52 ----A---- C:\Windows\system32\charmap.exe
2014-12-11 09:04:51 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-11 09:04:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-11 09:04:43 ----A---- C:\Windows\system32\tzres.dll
2014-12-10 08:25:54 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-10 08:25:51 ----A---- C:\Windows\system32\mf.dll
2014-12-09 23:22:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-12-06 13:03:44 ----D---- C:\Program Files (x86)\GPU-Z
2014-12-06 12:36:20 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-12-01 16:33:28 ----D---- C:\ProgramData\ManiaPlanet
2014-11-28 23:53:36 ----D---- C:\Users\asus\AppData\Roaming\puush
2014-11-28 23:53:14 ----D---- C:\Program Files (x86)\puush
2014-11-28 23:47:33 ----D---- C:\Program Files\OBS
2014-11-28 23:46:49 ----RD---- C:\Program Files (x86)\Skype
2014-11-28 23:39:18 ----D---- C:\Users\asus\AppData\Roaming\TeamViewer
2014-11-28 23:30:59 ----D---- C:\ProgramData\LogMeIn
2014-11-23 22:17:13 ----D---- C:\ProgramData\tmp
2014-11-23 22:17:12 ----D---- C:\ProgramData\hps
2014-11-23 22:10:35 ----D---- C:\Program Files\Fotolab
2014-11-19 09:44:29 ----D---- C:\Program Files\PostgreSQL
2014-11-19 08:53:09 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 08:53:09 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 08:53:08 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 08:53:07 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 04:31:16 ----A---- C:\Windows\SYSWOW64\FM20.DLL
2014-11-18 10:58:52 ----D---- C:\ProgramData\SystemExplorer
2014-11-15 16:35:28 ----D---- C:\ProgramData\RegRun
2014-11-12 17:05:09 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 17:05:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 17:05:08 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 17:05:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 17:05:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 17:05:03 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 17:05:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 17:02:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 17:02:13 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 17:02:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 17:02:12 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 17:02:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:02:10 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 17:02:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 17:02:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 17:01:59 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 17:01:59 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 17:01:11 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 17:01:11 ----A---- C:\Windows\system32\packager.dll
2014-11-12 17:01:10 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 17:01:07 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 17:01:07 ----A---- C:\Windows\system32\msi.dll
2014-11-12 17:00:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 17:00:38 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-09 15:03:15 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll20141109150311.dll
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2014-11-09 12:54:08 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-11-06 18:38:27 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-11-01 10:51:33 ----D---- C:\hotfix
2014-10-31 21:50:40 ----D---- C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4
2014-10-31 19:34:20 ----D---- C:\Program Files (x86)\OpenVPN Technologies
2014-10-31 15:47:09 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2014-10-31 09:08:19 ----D---- C:\Program Files\CCleaner
2014-10-30 13:10:37 ----A---- C:\Windows\system32\drivers\VBEngNT.sys
2014-10-30 13:10:36 ----A---- C:\Windows\system32\drivers\SandBox64.sys
2014-10-30 13:10:23 ----A---- C:\Windows\system32\drivers\afwcore.sys
2014-10-30 13:09:16 ----A---- C:\Windows\system32\drivers\afw.sys
2014-10-30 13:08:08 ----D---- C:\Windows\system32\Filt
2014-10-30 13:08:08 ----D---- C:\Users\asus\AppData\Roaming\Agnitum
2014-10-30 13:07:11 ----D---- C:\ProgramData\Agnitum
2014-10-30 09:29:24 ----A---- C:\Windows\SYSWOW64\PARTIZAN.TXT
2014-10-30 00:09:54 ----D---- C:\ProgramData\YTAHELPER.del
2014-10-29 23:25:59 ----A---- C:\Windows\system32\Partizan.exe
2014-10-29 23:24:24 ----D---- C:\@RestoreQuarantine
2014-10-29 20:42:05 ----A---- C:\autoexec.bat
2014-10-29 20:41:20 ----D---- C:\Program Files\Enigma Software Group
2014-10-29 20:08:53 ----D---- C:\Users\asus\AppData\Roaming\Runscanner.net
2014-10-28 14:40:45 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-28 14:40:18 ----D---- C:\Program Files (x86)\Java
2014-10-26 16:52:00 ----D---- C:\Program Files (x86)\WinPcap
2014-10-18 19:27:29 ----D---- C:\Program Files (x86)\Xiph.Org
2014-10-15 14:32:08 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 14:31:47 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 14:31:45 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 14:31:21 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 14:31:21 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 14:31:20 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 14:31:19 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 14:31:17 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 14:31:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 14:31:15 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 14:31:13 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 14:31:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 14:31:11 ----A---- C:\Windows\system32\ci.dll
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winload.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 14:31:08 ----A---- C:\Windows\system32\evr.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 14:31:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 14:31:06 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 14:31:05 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 14:31:03 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 14:31:03 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 14:31:02 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 14:31:01 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 14:31:00 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 14:30:59 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 14:30:59 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 14:30:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 14:30:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 14:30:57 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 14:30:57 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 14:30:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 14:30:55 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 14:30:54 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 14:28:00 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 14:27:59 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 14:27:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 14:27:49 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 14:27:47 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 14:27:31 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 14:27:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-13 14:33:59 ----SHD---- C:\found.000
2014-10-12 12:45:22 ----D---- C:\Users\asus\AppData\Roaming\Steam
2014-10-04 22:26:48 ----D---- C:\Program Files\SAMSUNG
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-04 22:20:35 ----D---- C:\Program Files (x86)\Samsung
======List of files/folders modified in the last 3 months======
2015-01-03 12:53:32 ----D---- C:\Windows\Temp
2015-01-03 12:52:41 ----A---- C:\Windows\SYSWOW64\log.txt
2015-01-03 12:50:37 ----D---- C:\Windows\system32\config
2015-01-03 12:49:55 ----D---- C:\Windows\system32\Tasks
2015-01-03 12:44:16 ----D---- C:\Windows\SysWOW64
2015-01-03 12:43:15 ----D---- C:\Windows\Tasks
2015-01-03 12:43:15 ----D---- C:\Windows
2015-01-02 23:26:48 ----SHD---- C:\System Volume Information
2015-01-01 23:21:08 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-01-01 22:46:45 ----D---- C:\ProgramData\ProductData
2015-01-01 22:41:42 ----D---- C:\AdwCleaner
2015-01-01 22:41:37 ----HD---- C:\ProgramData
2015-01-01 22:08:45 ----RD---- C:\Program Files
2015-01-01 18:20:19 ----D---- C:\Windows\system32\drivers
2015-01-01 18:05:44 ----D---- C:\Windows\System32
2015-01-01 18:05:44 ----D---- C:\Windows\inf
2015-01-01 18:05:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-01 15:41:09 ----RD---- C:\Program Files (x86)
2015-01-01 14:42:13 ----D---- C:\Windows\Prefetch
2014-12-28 10:41:32 ----D---- C:\Windows\system32\NDF
2014-12-25 11:49:04 ----AD---- C:\ProgramData\Temp
2014-12-21 19:02:17 ----D---- C:\Windows\rescache
2014-12-21 11:30:12 ----D---- C:\Windows\winsxs
2014-12-20 11:58:11 ----D---- C:\Program Files (x86)\Google
2014-12-20 11:55:39 ----D---- C:\ProgramData\IObit
2014-12-20 11:55:38 ----D---- C:\Users\asus\AppData\Roaming\IObit
2014-12-20 11:54:36 ----D---- C:\Program Files (x86)\IObit
2014-12-20 11:30:09 ----D---- C:\ProgramData\Razer
2014-12-20 10:45:49 ----D---- C:\Windows\SYSWOW64\drivers
2014-12-20 10:37:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2014-12-18 20:48:00 ----D---- C:\Windows\Microsoft.NET
2014-12-18 14:58:28 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-12-18 14:56:28 ----SHD---- C:\Config.Msi
2014-12-16 17:14:59 ----SHD---- C:\Windows\Installer
2014-12-16 17:14:46 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-12-13 15:14:33 ----SD---- C:\Windows\system32\CompatTel
2014-12-13 15:14:33 ----D---- C:\Windows\AppCompat
2014-12-13 15:14:32 ----SD---- C:\ProgramData\Microsoft
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\hr-HR
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\bg-BG
2014-12-13 15:14:31 ----D---- C:\Program Files\Internet Explorer
2014-12-13 15:14:31 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sl-SI
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\ro-RO
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lv-LV
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lt-LT
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\et-EE
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sr-Latn-CS
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sl-SI
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sk-SK
2014-12-13 15:14:29 ----D---- C:\Windows\system32\ro-RO
2014-12-13 15:14:29 ----D---- C:\Windows\system32\pl-PL
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lv-LV
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lt-LT
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hu-HU
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hr-HR
2014-12-13 15:14:29 ----D---- C:\Windows\system32\et-EE
2014-12-13 15:14:29 ----D---- C:\Windows\system32\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\bg-BG
2014-12-13 15:14:28 ----D---- C:\Windows\system32\en-US
2014-12-13 15:14:28 ----D---- C:\Windows\PolicyDefinitions
2014-12-13 14:40:14 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 11:13:33 ----D---- C:\Windows\system32\MRT
2014-12-11 11:02:39 ----D---- C:\Windows\debug
2014-12-11 11:02:36 ----A---- C:\Windows\system32\MRT.exe
2014-12-11 09:17:11 ----D---- C:\Windows\system32\catroot2
2014-12-10 08:56:59 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-12-10 08:56:55 ----D---- C:\Windows\Minidump
2014-12-10 08:56:55 ----D---- C:\Windows\Logs
2014-12-09 23:23:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-09 23:04:24 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-12-07 12:50:22 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-12-07 03:00:36 ----D---- C:\ProgramData\Origin
2014-12-06 12:38:00 ----D---- C:\Windows\SYSWOW64\directx
2014-11-29 01:40:56 ----D---- C:\Users\asus\AppData\Roaming\Skype
2014-11-28 23:46:51 ----D---- C:\Program Files (x86)\Common Files
2014-11-28 23:46:29 ----D---- C:\ProgramData\Skype
2014-11-19 09:47:55 ----D---- C:\Users
2014-11-17 21:22:03 ----D---- C:\Windows\system32\drivers\etc
2014-11-16 02:52:42 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-11-14 16:08:38 ----N---- C:\Windows\win.ini
2014-11-13 17:56:28 ----RSD---- C:\Windows\assembly
2014-11-12 21:01:00 ----RSD---- C:\Windows\Fonts
2014-11-10 14:07:37 ----SHD---- C:\Boot
2014-11-01 10:55:30 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-10-31 22:20:42 ----D---- C:\Windows\system32\GroupPolicy
2014-10-31 20:36:25 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-10-31 19:35:58 ----D---- C:\Windows\system32\DriverStore
2014-10-31 16:04:08 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-10-31 09:40:20 ----D---- C:\Program Files\Common Files
2014-10-31 09:12:14 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Pro
2014-10-31 00:29:25 ----D---- C:\Windows\system32\catroot
2014-10-30 12:25:26 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-29 23:22:36 ----D---- C:\ProgramData\HostIt
2014-10-28 14:47:42 ----D---- C:\ProgramData\Oracle
2014-10-27 19:58:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-27 19:46:49 ----D---- C:\Program Files (x86)\Microsoft
2014-10-27 19:29:19 ----D---- C:\Users\asus\AppData\Roaming\Ubisoft
2014-10-16 13:52:40 ----D---- C:\Program Files\Windows Media Player
2014-10-16 13:52:40 ----D---- C:\Program Files (x86)\Windows Media Player
2014-10-16 13:52:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 13:52:37 ----D---- C:\Windows\system32\Dism
2014-10-16 13:52:30 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 13:52:30 ----D---- C:\Windows\system32\Boot
2014-10-12 11:02:27 ----D---- C:\Users\asus\AppData\Roaming\Tropico 5
2014-10-04 22:21:07 ----D---- C:\Users\asus\AppData\Roaming\Samsung
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 afw;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2010-04-20 39528]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SandBox;SandBox; \??\C:\Windows\system32\drivers\SandBox64.sys [2011-03-21 1097672]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 afwcore;afwcore; C:\Windows\system32\drivers\afwcore.sys [2010-09-27 424040]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 ASWFilt;ASWFilt; \??\C:\Windows\system32\Filt\ASWFilt64.dll [2011-03-21 49168]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-03 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
R3 VBEngNT;VBEngNT; \??\C:\Windows\system32\drivers\VBEngNT.sys [2011-02-02 293048]
R3 VBFilt;VBFilt; \??\C:\Windows\system32\Filt\VBFilt64.dll [2011-03-21 42976]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-08 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624]
S2 acssrv;Agnitum Client Security Service; D:\OUTPOS~1\acs.exe [2011-04-04 3501696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-12-20 2631456]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2014-12-07 1900400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zaneřáděný NTB
Dvouklikem na soubor C:\Program Files\trend micro\asus.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O18 - Protocol: tmbp - (no CLSID) - (no file)
O18 - Protocol: tmpx - (no CLSID) - (no file)
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zaneřáděný NTB
Hotovo. Při startu windows mi ale naběhla kontrola disku C:, která následně selhala a vypsalo mi to ať obnovím windows, že mi tam něco zmrvil nedávno nainstalovaný balíček. Win je ale zdá se zatím v poho.
Re: Zaneřáděný NTB
Pro jistotu přikládám nový log z RSIT.
Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-01-03 14:13:56
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 32 GB (16%) free of 200 GB
Total RAM: 4000 MB (39% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:14:15, on 3.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
D:\WhatPulse2\whatpulse.exe
C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\IObit Uninstaller\UninstallMonitor.exe
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\asus.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [Trend Micro Titanium] C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
O4 - HKLM\..\Run: [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
O4 - HKCU\..\Run: [WhatPulse] "D:\WhatPulse2\whatpulse.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C294DF9-8A39-4845-8304-97AF13BD3791}: Domain = ncpa.cpl
O18 - Protocol: tmbp - (no CLSID) - (no file)
O18 - Protocol: tmpx - (no CLSID) - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: d:\outpos~1\wl_hook.dll c:\windows\jaksta\ac\x86\jaudcap.dll
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - D:\OUTPOS~1\acs.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: postgresql-x64-9.0 - PostgreSQL Server 9.0 (postgresql-x64-9.0) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe
O23 - Service: postgresql-x64-9.3 - PostgreSQL Server 9.3 (postgresql-x64-9.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - D:\System Explorer\service\SystemExplorerService64.exe
O23 - Service: TiMiniService - Unknown owner - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 13981 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 4383408
\??\C:\Windows\system32\conhost.exe "-1469097226-148056210-1668583041188874173038935492719652001121783973596-1475100586
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {BAB49B0D-43F3-4BE9-A7E9-DAB17B6C5C0C}
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
taskeng.exe {681F12B5-2218-4617-AA54-307503C7B751}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
taskeng.exe {4DF7A892-28D3-4F73-B6CE-AD10F39AADAD}
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" -EMBEDDING
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Outpost security Firewall\op_mon.exe" /tray /noservice
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "1940508260-133076195214813127138067111861490420784-667960302140790770-1518456123
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "21397521792053900863151381018-15037010194725542541010823235985078656629151229
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "664" "660"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1100" "1096"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1616
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "824" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "820" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "824"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "820"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1188" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "172" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1188" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "172"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "1188"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3864.0.1373681163\41094870" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27 --gpu-vendor-id=0x1002 --gpu-device-id=0x6742 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.901.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SPDY/SpdyDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_43/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/ --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="3864.4.1365438462\458651957" /prefetch:673131151
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"D:\IObit Uninstaller\UninstallMonitor.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1c95c318-da05-4123-8d65-9b0bf8eaeb45 -SystemEventPortName:HostProcess-ce681525-5104-49ff-827c-ab2da48eebc2 -IoCancelEventPortName:HostProcess-bc863808-f949-4ba7-af1e-bc27887230f3 -NonStateChangingEventPortName:HostProcess-544855eb-9567-4a40-bbcf-41082d998bb4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:177e9df4-d0ce-4182-b3d8-c51c16e25619 -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
D:\WhatPulse2\whatpulse-watchdog.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"D:\TeamSpeak 3\ts3client_win64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SPDY/SpdyDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_43/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/ --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="3864.8.409136978\1634871383" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3864.20.352429769\896677612" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\asus\Desktop\RSITx64.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - D:\IObit Uninstaller\UninstallExplorer64.dll [2014-12-20 2471744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-28 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-28 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288]
"OutpostMonitor"=D:\OUTPOS~1\op_mon.exe [2011-04-04 4510072]
"OutpostFeedBack"=D:\Outpost security Firewall\feedback.exe [2011-03-30 808064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2013-09-20 3666224]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2014-12-08 3563520]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-12 3391712]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-19 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []
"Trend Micro Titanium"=C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush none none []
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="d:\outpos~1\wl_hoo~1.dll c:\windows\jaksta\ac\x64\jaudcap.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2015-01-03 14:13:56 ----D---- C:\rsit
2015-01-01 22:08:45 ----D---- C:\Program Files\trend micro
2015-01-01 17:23:32 ----D---- C:\Users\asus\AppData\Roaming\PowerISO
2015-01-01 17:22:16 ----A---- C:\Windows\system32\drivers\scdemu.sys
2015-01-01 17:22:05 ----D---- C:\Program Files\PowerISO
2015-01-01 15:41:09 ----D---- C:\Program Files (x86)\7-Zip
2014-12-28 16:19:44 ----D---- C:\Users\asus\AppData\Roaming\SitNGoWizard
2014-12-25 11:04:37 ----D---- C:\ProgramData\Oberon Media
2014-12-21 15:00:04 ----D---- C:\Program Files (x86)\SpeedFan
2014-12-21 14:59:45 ----D---- C:\Users\asus\AppData\Roaming\Roaming
2014-12-21 14:59:41 ----D---- C:\HM2Archive
2014-12-21 14:59:18 ----D---- C:\Users\asus\AppData\Roaming\HEM Data
2014-12-21 14:51:37 ----D---- C:\ProgramData\XHEO INC
2014-12-21 14:51:00 ----D---- C:\Users\asus\AppData\Roaming\HoldemManager
2014-12-21 14:32:50 ----D---- C:\Program Files (x86)\PSQLINSTALL
2014-12-18 15:17:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-18 15:17:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-13 15:14:32 ----D---- C:\Windows\system32\appraiser
2014-12-11 09:18:07 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 09:18:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\appraiser.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aepic.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aeinv.dll
2014-12-11 09:17:59 ----A---- C:\Windows\system32\invagent.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\generaltel.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\devinv.dll
2014-12-11 09:17:57 ----A---- C:\Windows\system32\aepdu.dll
2014-12-11 09:17:30 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-11 09:12:53 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 09:12:53 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 09:12:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 09:12:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 09:12:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 09:12:47 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 09:12:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 09:12:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-11 09:12:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 09:12:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 09:12:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 09:12:39 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 09:12:38 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 09:12:36 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 09:12:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 09:12:30 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\ieui.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 09:12:21 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 09:12:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 09:12:19 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 09:12:11 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 09:04:52 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-11 09:04:52 ----A---- C:\Windows\system32\charmap.exe
2014-12-11 09:04:51 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-11 09:04:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-11 09:04:43 ----A---- C:\Windows\system32\tzres.dll
2014-12-10 08:25:54 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-10 08:25:51 ----A---- C:\Windows\system32\mf.dll
2014-12-09 23:22:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-12-06 13:03:44 ----D---- C:\Program Files (x86)\GPU-Z
2014-12-06 12:36:20 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-12-01 16:33:28 ----D---- C:\ProgramData\ManiaPlanet
2014-11-28 23:53:36 ----D---- C:\Users\asus\AppData\Roaming\puush
2014-11-28 23:47:33 ----D---- C:\Program Files\OBS
2014-11-28 23:46:49 ----RD---- C:\Program Files (x86)\Skype
2014-11-28 23:39:18 ----D---- C:\Users\asus\AppData\Roaming\TeamViewer
2014-11-28 23:30:59 ----D---- C:\ProgramData\LogMeIn
2014-11-23 22:17:13 ----D---- C:\ProgramData\tmp
2014-11-23 22:17:12 ----D---- C:\ProgramData\hps
2014-11-23 22:10:35 ----D---- C:\Program Files\Fotolab
2014-11-19 09:44:29 ----D---- C:\Program Files\PostgreSQL
2014-11-19 08:53:09 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 08:53:09 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 08:53:08 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 08:53:07 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 04:31:16 ----A---- C:\Windows\SYSWOW64\FM20.DLL
2014-11-18 10:58:52 ----D---- C:\ProgramData\SystemExplorer
2014-11-15 16:35:28 ----D---- C:\ProgramData\RegRun
2014-11-12 17:05:09 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 17:05:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 17:05:08 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 17:05:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 17:05:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 17:05:03 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 17:05:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 17:02:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 17:02:13 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 17:02:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 17:02:12 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 17:02:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:02:10 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 17:02:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 17:02:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 17:01:59 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 17:01:59 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 17:01:11 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 17:01:11 ----A---- C:\Windows\system32\packager.dll
2014-11-12 17:01:10 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 17:01:07 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 17:01:07 ----A---- C:\Windows\system32\msi.dll
2014-11-12 17:00:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 17:00:38 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-09 15:03:15 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll20141109150311.dll
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2014-11-09 12:54:08 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-11-06 18:38:27 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-11-01 10:51:33 ----D---- C:\hotfix
2014-10-31 21:50:40 ----D---- C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4
2014-10-31 19:34:20 ----D---- C:\Program Files (x86)\OpenVPN Technologies
2014-10-31 15:47:09 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2014-10-31 09:08:19 ----D---- C:\Program Files\CCleaner
2014-10-30 13:10:37 ----A---- C:\Windows\system32\drivers\VBEngNT.sys
2014-10-30 13:10:36 ----A---- C:\Windows\system32\drivers\SandBox64.sys
2014-10-30 13:10:23 ----A---- C:\Windows\system32\drivers\afwcore.sys
2014-10-30 13:09:16 ----A---- C:\Windows\system32\drivers\afw.sys
2014-10-30 13:08:08 ----D---- C:\Windows\system32\Filt
2014-10-30 13:08:08 ----D---- C:\Users\asus\AppData\Roaming\Agnitum
2014-10-30 13:07:11 ----D---- C:\ProgramData\Agnitum
2014-10-30 09:29:24 ----A---- C:\Windows\SYSWOW64\PARTIZAN.TXT
2014-10-30 00:09:54 ----D---- C:\ProgramData\YTAHELPER.del
2014-10-29 23:25:59 ----A---- C:\Windows\system32\Partizan.exe
2014-10-29 23:24:24 ----D---- C:\@RestoreQuarantine
2014-10-29 20:42:05 ----A---- C:\autoexec.bat
2014-10-29 20:41:20 ----D---- C:\Program Files\Enigma Software Group
2014-10-29 20:08:53 ----D---- C:\Users\asus\AppData\Roaming\Runscanner.net
2014-10-28 14:40:45 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-28 14:40:18 ----D---- C:\Program Files (x86)\Java
2014-10-26 16:52:00 ----D---- C:\Program Files (x86)\WinPcap
2014-10-18 19:27:29 ----D---- C:\Program Files (x86)\Xiph.Org
2014-10-15 14:32:08 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 14:31:47 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 14:31:45 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 14:31:21 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 14:31:21 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 14:31:20 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 14:31:19 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 14:31:17 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 14:31:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 14:31:15 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 14:31:13 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 14:31:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 14:31:11 ----A---- C:\Windows\system32\ci.dll
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winload.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 14:31:08 ----A---- C:\Windows\system32\evr.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 14:31:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 14:31:06 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 14:31:05 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 14:31:03 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 14:31:03 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 14:31:02 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 14:31:01 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 14:31:00 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 14:30:59 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 14:30:59 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 14:30:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 14:30:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 14:30:57 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 14:30:57 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 14:30:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 14:30:55 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 14:30:54 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 14:28:00 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 14:27:59 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 14:27:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 14:27:49 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 14:27:47 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 14:27:31 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 14:27:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-13 14:33:59 ----SHD---- C:\found.000
2014-10-12 12:45:22 ----D---- C:\Users\asus\AppData\Roaming\Steam
2014-10-04 22:26:48 ----D---- C:\Program Files\SAMSUNG
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-04 22:20:35 ----D---- C:\Program Files (x86)\Samsung
======List of files/folders modified in the last 3 months======
2015-01-03 14:12:31 ----D---- C:\Windows\Temp
2015-01-03 13:36:38 ----D---- C:\Windows\system32\config
2015-01-03 13:33:49 ----SHD---- C:\Windows\Installer
2015-01-03 13:33:49 ----SHD---- C:\Config.Msi
2015-01-03 13:33:49 ----RD---- C:\Program Files (x86)
2015-01-03 13:27:33 ----D---- C:\Program Files (x86)\IObit
2015-01-03 13:27:25 ----D---- C:\Windows\system32\Tasks
2015-01-03 13:21:58 ----A---- C:\Windows\SYSWOW64\log.txt
2015-01-03 12:44:16 ----D---- C:\Windows\SysWOW64
2015-01-03 12:43:15 ----D---- C:\Windows\Tasks
2015-01-03 12:43:15 ----D---- C:\Windows
2015-01-02 23:26:48 ----SHD---- C:\System Volume Information
2015-01-01 23:21:08 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-01-01 22:46:45 ----D---- C:\ProgramData\ProductData
2015-01-01 22:41:42 ----D---- C:\AdwCleaner
2015-01-01 22:41:37 ----HD---- C:\ProgramData
2015-01-01 22:08:45 ----RD---- C:\Program Files
2015-01-01 18:20:19 ----D---- C:\Windows\system32\drivers
2015-01-01 18:05:44 ----D---- C:\Windows\System32
2015-01-01 18:05:44 ----D---- C:\Windows\inf
2015-01-01 18:05:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-01 14:42:13 ----D---- C:\Windows\Prefetch
2014-12-28 10:41:32 ----D---- C:\Windows\system32\NDF
2014-12-25 11:49:04 ----AD---- C:\ProgramData\Temp
2014-12-21 19:02:17 ----D---- C:\Windows\rescache
2014-12-21 11:30:12 ----D---- C:\Windows\winsxs
2014-12-20 11:58:11 ----D---- C:\Program Files (x86)\Google
2014-12-20 11:55:39 ----D---- C:\ProgramData\IObit
2014-12-20 11:55:38 ----D---- C:\Users\asus\AppData\Roaming\IObit
2014-12-20 11:30:09 ----D---- C:\ProgramData\Razer
2014-12-20 10:45:49 ----D---- C:\Windows\SYSWOW64\drivers
2014-12-20 10:37:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2014-12-18 20:48:00 ----D---- C:\Windows\Microsoft.NET
2014-12-18 14:58:28 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-12-16 17:14:46 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-12-13 15:14:33 ----SD---- C:\Windows\system32\CompatTel
2014-12-13 15:14:33 ----D---- C:\Windows\AppCompat
2014-12-13 15:14:32 ----SD---- C:\ProgramData\Microsoft
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\hr-HR
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\bg-BG
2014-12-13 15:14:31 ----D---- C:\Program Files\Internet Explorer
2014-12-13 15:14:31 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sl-SI
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\ro-RO
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lv-LV
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lt-LT
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\et-EE
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sr-Latn-CS
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sl-SI
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sk-SK
2014-12-13 15:14:29 ----D---- C:\Windows\system32\ro-RO
2014-12-13 15:14:29 ----D---- C:\Windows\system32\pl-PL
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lv-LV
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lt-LT
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hu-HU
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hr-HR
2014-12-13 15:14:29 ----D---- C:\Windows\system32\et-EE
2014-12-13 15:14:29 ----D---- C:\Windows\system32\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\bg-BG
2014-12-13 15:14:28 ----D---- C:\Windows\system32\en-US
2014-12-13 15:14:28 ----D---- C:\Windows\PolicyDefinitions
2014-12-13 14:40:14 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 11:13:33 ----D---- C:\Windows\system32\MRT
2014-12-11 11:02:39 ----D---- C:\Windows\debug
2014-12-11 11:02:36 ----A---- C:\Windows\system32\MRT.exe
2014-12-11 09:17:11 ----D---- C:\Windows\system32\catroot2
2014-12-10 08:56:59 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-12-10 08:56:55 ----D---- C:\Windows\Minidump
2014-12-10 08:56:55 ----D---- C:\Windows\Logs
2014-12-09 23:23:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-09 23:04:24 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-12-07 12:50:22 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-12-07 03:00:36 ----D---- C:\ProgramData\Origin
2014-12-06 12:38:00 ----D---- C:\Windows\SYSWOW64\directx
2014-11-29 01:40:56 ----D---- C:\Users\asus\AppData\Roaming\Skype
2014-11-28 23:46:51 ----D---- C:\Program Files (x86)\Common Files
2014-11-28 23:46:29 ----D---- C:\ProgramData\Skype
2014-11-19 09:47:55 ----D---- C:\Users
2014-11-17 21:22:03 ----D---- C:\Windows\system32\drivers\etc
2014-11-16 02:52:42 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-11-14 16:08:38 ----N---- C:\Windows\win.ini
2014-11-13 17:56:28 ----RSD---- C:\Windows\assembly
2014-11-12 21:01:00 ----RSD---- C:\Windows\Fonts
2014-11-10 14:07:37 ----SHD---- C:\Boot
2014-11-01 10:55:30 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-10-31 22:20:42 ----D---- C:\Windows\system32\GroupPolicy
2014-10-31 20:36:25 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-10-31 19:35:58 ----D---- C:\Windows\system32\DriverStore
2014-10-31 16:04:08 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-10-31 09:40:20 ----D---- C:\Program Files\Common Files
2014-10-31 09:12:14 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Pro
2014-10-31 00:29:25 ----D---- C:\Windows\system32\catroot
2014-10-30 12:25:26 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-29 23:22:36 ----D---- C:\ProgramData\HostIt
2014-10-28 14:47:42 ----D---- C:\ProgramData\Oracle
2014-10-27 19:58:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-27 19:46:49 ----D---- C:\Program Files (x86)\Microsoft
2014-10-27 19:29:19 ----D---- C:\Users\asus\AppData\Roaming\Ubisoft
2014-10-16 13:52:40 ----D---- C:\Program Files\Windows Media Player
2014-10-16 13:52:40 ----D---- C:\Program Files (x86)\Windows Media Player
2014-10-16 13:52:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 13:52:37 ----D---- C:\Windows\system32\Dism
2014-10-16 13:52:30 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 13:52:30 ----D---- C:\Windows\system32\Boot
2014-10-12 11:02:27 ----D---- C:\Users\asus\AppData\Roaming\Tropico 5
2014-10-04 22:21:07 ----D---- C:\Users\asus\AppData\Roaming\Samsung
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 afw;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2010-04-20 39528]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SandBox;SandBox; \??\C:\Windows\system32\drivers\SandBox64.sys [2011-03-21 1097672]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 afwcore;afwcore; C:\Windows\system32\drivers\afwcore.sys [2010-09-27 424040]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 ASWFilt;ASWFilt; \??\C:\Windows\system32\Filt\ASWFilt64.dll [2011-03-21 49168]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-03 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
R3 VBEngNT;VBEngNT; \??\C:\Windows\system32\drivers\VBEngNT.sys [2011-02-02 293048]
R3 VBFilt;VBFilt; \??\C:\Windows\system32\Filt\VBFilt64.dll [2011-03-21 42976]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-08 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624]
S2 acssrv;Agnitum Client Security Service; D:\OUTPOS~1\acs.exe [2011-04-04 3501696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-12-20 2631456]
S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2014-12-07 1900400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-01-03 14:13:56
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 32 GB (16%) free of 200 GB
Total RAM: 4000 MB (39% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:14:15, on 3.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
D:\WhatPulse2\whatpulse.exe
C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\IObit Uninstaller\UninstallMonitor.exe
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\asus.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [Trend Micro Titanium] C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none"
O4 - HKLM\..\Run: [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
O4 - HKCU\..\Run: [WhatPulse] "D:\WhatPulse2\whatpulse.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C294DF9-8A39-4845-8304-97AF13BD3791}: Domain = ncpa.cpl
O18 - Protocol: tmbp - (no CLSID) - (no file)
O18 - Protocol: tmpx - (no CLSID) - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: d:\outpos~1\wl_hook.dll c:\windows\jaksta\ac\x86\jaudcap.dll
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - D:\OUTPOS~1\acs.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: postgresql-x64-9.0 - PostgreSQL Server 9.0 (postgresql-x64-9.0) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe
O23 - Service: postgresql-x64-9.3 - PostgreSQL Server 9.3 (postgresql-x64-9.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - D:\System Explorer\service\SystemExplorerService64.exe
O23 - Service: TiMiniService - Unknown owner - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 13981 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 4383408
\??\C:\Windows\system32\conhost.exe "-1469097226-148056210-1668583041188874173038935492719652001121783973596-1475100586
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {BAB49B0D-43F3-4BE9-A7E9-DAB17B6C5C0C}
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
taskeng.exe {681F12B5-2218-4617-AA54-307503C7B751}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
taskeng.exe {4DF7A892-28D3-4F73-B6CE-AD10F39AADAD}
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" -EMBEDDING
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Outpost security Firewall\op_mon.exe" /tray /noservice
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "1940508260-133076195214813127138067111861490420784-667960302140790770-1518456123
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "21397521792053900863151381018-15037010194725542541010823235985078656629151229
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "664" "660"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1100" "1096"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1616
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "824" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "820" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "824"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "820"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1188" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "172" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1188" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "172"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "1188"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3864.0.1373681163\41094870" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27 --gpu-vendor-id=0x1002 --gpu-device-id=0x6742 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.901.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SPDY/SpdyDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_43/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/ --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="3864.4.1365438462\458651957" /prefetch:673131151
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"D:\IObit Uninstaller\UninstallMonitor.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1c95c318-da05-4123-8d65-9b0bf8eaeb45 -SystemEventPortName:HostProcess-ce681525-5104-49ff-827c-ab2da48eebc2 -IoCancelEventPortName:HostProcess-bc863808-f949-4ba7-af1e-bc27887230f3 -NonStateChangingEventPortName:HostProcess-544855eb-9567-4a40-bbcf-41082d998bb4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:177e9df4-d0ce-4182-b3d8-c51c16e25619 -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
D:\WhatPulse2\whatpulse-watchdog.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"D:\TeamSpeak 3\ts3client_win64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SPDY/SpdyDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_43/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/ --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="3864.8.409136978\1634871383" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3864.20.352429769\896677612" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\asus\Desktop\RSITx64.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - D:\IObit Uninstaller\UninstallExplorer64.dll [2014-12-20 2471744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-28 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-28 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288]
"OutpostMonitor"=D:\OUTPOS~1\op_mon.exe [2011-04-04 4510072]
"OutpostFeedBack"=D:\Outpost security Firewall\feedback.exe [2011-03-30 808064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2013-09-20 3666224]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2014-12-08 3563520]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-12 3391712]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-19 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []
"Trend Micro Titanium"=C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush none none []
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="d:\outpos~1\wl_hoo~1.dll c:\windows\jaksta\ac\x64\jaudcap.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2015-01-03 14:13:56 ----D---- C:\rsit
2015-01-01 22:08:45 ----D---- C:\Program Files\trend micro
2015-01-01 17:23:32 ----D---- C:\Users\asus\AppData\Roaming\PowerISO
2015-01-01 17:22:16 ----A---- C:\Windows\system32\drivers\scdemu.sys
2015-01-01 17:22:05 ----D---- C:\Program Files\PowerISO
2015-01-01 15:41:09 ----D---- C:\Program Files (x86)\7-Zip
2014-12-28 16:19:44 ----D---- C:\Users\asus\AppData\Roaming\SitNGoWizard
2014-12-25 11:04:37 ----D---- C:\ProgramData\Oberon Media
2014-12-21 15:00:04 ----D---- C:\Program Files (x86)\SpeedFan
2014-12-21 14:59:45 ----D---- C:\Users\asus\AppData\Roaming\Roaming
2014-12-21 14:59:41 ----D---- C:\HM2Archive
2014-12-21 14:59:18 ----D---- C:\Users\asus\AppData\Roaming\HEM Data
2014-12-21 14:51:37 ----D---- C:\ProgramData\XHEO INC
2014-12-21 14:51:00 ----D---- C:\Users\asus\AppData\Roaming\HoldemManager
2014-12-21 14:32:50 ----D---- C:\Program Files (x86)\PSQLINSTALL
2014-12-18 15:17:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-18 15:17:48 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-13 15:14:32 ----D---- C:\Windows\system32\appraiser
2014-12-11 09:18:07 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-11 09:18:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\appraiser.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aepic.dll
2014-12-11 09:18:01 ----A---- C:\Windows\system32\aeinv.dll
2014-12-11 09:17:59 ----A---- C:\Windows\system32\invagent.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\generaltel.dll
2014-12-11 09:17:58 ----A---- C:\Windows\system32\devinv.dll
2014-12-11 09:17:57 ----A---- C:\Windows\system32\aepdu.dll
2014-12-11 09:17:30 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-11 09:12:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-11 09:12:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-11 09:12:53 ----A---- C:\Windows\system32\iernonce.dll
2014-12-11 09:12:53 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-11 09:12:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-11 09:12:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-11 09:12:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-11 09:12:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 09:12:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-11 09:12:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-11 09:12:47 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-11 09:12:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\urlmon.dll
2014-12-11 09:12:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 09:12:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-11 09:12:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-11 09:12:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-11 09:12:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-11 09:12:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-11 09:12:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-11 09:12:39 ----A---- C:\Windows\system32\iesetup.dll
2014-12-11 09:12:38 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-11 09:12:36 ----A---- C:\Windows\system32\iertutil.dll
2014-12-11 09:12:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-11 09:12:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-11 09:12:30 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-11 09:12:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\ieui.dll
2014-12-11 09:12:27 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-11 09:12:26 ----A---- C:\Windows\system32\ieframe.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-11 09:12:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\vbscript.dll
2014-12-11 09:12:23 ----A---- C:\Windows\system32\jscript9.dll
2014-12-11 09:12:21 ----A---- C:\Windows\system32\wininet.dll
2014-12-11 09:12:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-11 09:12:19 ----A---- C:\Windows\system32\msrating.dll
2014-12-11 09:12:11 ----A---- C:\Windows\system32\mshtml.dll
2014-12-11 09:04:52 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-11 09:04:52 ----A---- C:\Windows\system32\charmap.exe
2014-12-11 09:04:51 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 09:04:50 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-11 09:04:49 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-11 09:04:49 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-11 09:04:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-11 09:04:43 ----A---- C:\Windows\system32\tzres.dll
2014-12-10 08:25:54 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-10 08:25:51 ----A---- C:\Windows\system32\mf.dll
2014-12-09 23:22:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-12-06 13:03:44 ----D---- C:\Program Files (x86)\GPU-Z
2014-12-06 12:36:20 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-12-01 16:33:28 ----D---- C:\ProgramData\ManiaPlanet
2014-11-28 23:53:36 ----D---- C:\Users\asus\AppData\Roaming\puush
2014-11-28 23:47:33 ----D---- C:\Program Files\OBS
2014-11-28 23:46:49 ----RD---- C:\Program Files (x86)\Skype
2014-11-28 23:39:18 ----D---- C:\Users\asus\AppData\Roaming\TeamViewer
2014-11-28 23:30:59 ----D---- C:\ProgramData\LogMeIn
2014-11-23 22:17:13 ----D---- C:\ProgramData\tmp
2014-11-23 22:17:12 ----D---- C:\ProgramData\hps
2014-11-23 22:10:35 ----D---- C:\Program Files\Fotolab
2014-11-19 09:44:29 ----D---- C:\Program Files\PostgreSQL
2014-11-19 08:53:09 ----A---- C:\Windows\system32\pku2u.dll
2014-11-19 08:53:09 ----A---- C:\Windows\system32\kerberos.dll
2014-11-19 08:53:08 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-19 08:53:07 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-19 04:31:16 ----A---- C:\Windows\SYSWOW64\FM20.DLL
2014-11-18 10:58:52 ----D---- C:\ProgramData\SystemExplorer
2014-11-15 16:35:28 ----D---- C:\ProgramData\RegRun
2014-11-12 17:05:09 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 17:05:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 17:05:08 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 17:05:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 17:05:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 17:05:03 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 17:05:03 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 17:05:02 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 17:02:13 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 17:02:13 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 17:02:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 17:02:12 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 17:02:11 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 17:02:10 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 17:02:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 17:02:07 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 17:02:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 17:02:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 17:02:03 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 17:02:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 17:02:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 17:02:01 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 17:02:00 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 17:01:59 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 17:01:59 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 17:01:11 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 17:01:11 ----A---- C:\Windows\system32\packager.dll
2014-11-12 17:01:10 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 17:01:07 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 17:01:07 ----A---- C:\Windows\system32\msi.dll
2014-11-12 17:00:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 17:00:38 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-09 15:03:15 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll20141109150311.dll
2014-11-09 15:02:51 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2014-11-09 12:54:08 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-11-06 18:38:27 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-11-01 10:51:33 ----D---- C:\hotfix
2014-10-31 21:50:40 ----D---- C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4
2014-10-31 19:34:20 ----D---- C:\Program Files (x86)\OpenVPN Technologies
2014-10-31 15:47:09 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2014-10-31 09:08:19 ----D---- C:\Program Files\CCleaner
2014-10-30 13:10:37 ----A---- C:\Windows\system32\drivers\VBEngNT.sys
2014-10-30 13:10:36 ----A---- C:\Windows\system32\drivers\SandBox64.sys
2014-10-30 13:10:23 ----A---- C:\Windows\system32\drivers\afwcore.sys
2014-10-30 13:09:16 ----A---- C:\Windows\system32\drivers\afw.sys
2014-10-30 13:08:08 ----D---- C:\Windows\system32\Filt
2014-10-30 13:08:08 ----D---- C:\Users\asus\AppData\Roaming\Agnitum
2014-10-30 13:07:11 ----D---- C:\ProgramData\Agnitum
2014-10-30 09:29:24 ----A---- C:\Windows\SYSWOW64\PARTIZAN.TXT
2014-10-30 00:09:54 ----D---- C:\ProgramData\YTAHELPER.del
2014-10-29 23:25:59 ----A---- C:\Windows\system32\Partizan.exe
2014-10-29 23:24:24 ----D---- C:\@RestoreQuarantine
2014-10-29 20:42:05 ----A---- C:\autoexec.bat
2014-10-29 20:41:20 ----D---- C:\Program Files\Enigma Software Group
2014-10-29 20:08:53 ----D---- C:\Users\asus\AppData\Roaming\Runscanner.net
2014-10-28 14:40:45 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-28 14:40:28 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-28 14:40:18 ----D---- C:\Program Files (x86)\Java
2014-10-26 16:52:00 ----D---- C:\Program Files (x86)\WinPcap
2014-10-18 19:27:29 ----D---- C:\Program Files (x86)\Xiph.Org
2014-10-15 14:32:08 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 14:31:47 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 14:31:46 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 14:31:45 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 14:31:21 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 14:31:21 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 14:31:20 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 14:31:19 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 14:31:17 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 14:31:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 14:31:15 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 14:31:13 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 14:31:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 14:31:11 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 14:31:11 ----A---- C:\Windows\system32\ci.dll
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\winload.exe
2014-10-15 14:31:09 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 14:31:08 ----A---- C:\Windows\system32\evr.dll
2014-10-15 14:31:08 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 14:31:07 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 14:31:07 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 14:31:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 14:31:06 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 14:31:05 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 14:31:05 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 14:31:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 14:31:04 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 14:31:03 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 14:31:03 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 14:31:02 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 14:31:01 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 14:31:01 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 14:31:00 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 14:31:00 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 14:30:59 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 14:30:59 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 14:30:58 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 14:30:58 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 14:30:57 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 14:30:57 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 14:30:57 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 14:30:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 14:30:55 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 14:30:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 14:30:54 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 14:30:54 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 14:30:54 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 14:28:00 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 14:27:59 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 14:27:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 14:27:49 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 14:27:49 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 14:27:47 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 14:27:31 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 14:27:30 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-10-13 14:33:59 ----SHD---- C:\found.000
2014-10-12 12:45:22 ----D---- C:\Users\asus\AppData\Roaming\Steam
2014-10-04 22:26:48 ----D---- C:\Program Files\SAMSUNG
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-04 22:23:43 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-04 22:20:35 ----D---- C:\Program Files (x86)\Samsung
======List of files/folders modified in the last 3 months======
2015-01-03 14:12:31 ----D---- C:\Windows\Temp
2015-01-03 13:36:38 ----D---- C:\Windows\system32\config
2015-01-03 13:33:49 ----SHD---- C:\Windows\Installer
2015-01-03 13:33:49 ----SHD---- C:\Config.Msi
2015-01-03 13:33:49 ----RD---- C:\Program Files (x86)
2015-01-03 13:27:33 ----D---- C:\Program Files (x86)\IObit
2015-01-03 13:27:25 ----D---- C:\Windows\system32\Tasks
2015-01-03 13:21:58 ----A---- C:\Windows\SYSWOW64\log.txt
2015-01-03 12:44:16 ----D---- C:\Windows\SysWOW64
2015-01-03 12:43:15 ----D---- C:\Windows\Tasks
2015-01-03 12:43:15 ----D---- C:\Windows
2015-01-02 23:26:48 ----SHD---- C:\System Volume Information
2015-01-01 23:21:08 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-01-01 22:46:45 ----D---- C:\ProgramData\ProductData
2015-01-01 22:41:42 ----D---- C:\AdwCleaner
2015-01-01 22:41:37 ----HD---- C:\ProgramData
2015-01-01 22:08:45 ----RD---- C:\Program Files
2015-01-01 18:20:19 ----D---- C:\Windows\system32\drivers
2015-01-01 18:05:44 ----D---- C:\Windows\System32
2015-01-01 18:05:44 ----D---- C:\Windows\inf
2015-01-01 18:05:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-01 14:42:13 ----D---- C:\Windows\Prefetch
2014-12-28 10:41:32 ----D---- C:\Windows\system32\NDF
2014-12-25 11:49:04 ----AD---- C:\ProgramData\Temp
2014-12-21 19:02:17 ----D---- C:\Windows\rescache
2014-12-21 11:30:12 ----D---- C:\Windows\winsxs
2014-12-20 11:58:11 ----D---- C:\Program Files (x86)\Google
2014-12-20 11:55:39 ----D---- C:\ProgramData\IObit
2014-12-20 11:55:38 ----D---- C:\Users\asus\AppData\Roaming\IObit
2014-12-20 11:30:09 ----D---- C:\ProgramData\Razer
2014-12-20 10:45:49 ----D---- C:\Windows\SYSWOW64\drivers
2014-12-20 10:37:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2014-12-18 20:48:00 ----D---- C:\Windows\Microsoft.NET
2014-12-18 14:58:28 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-12-16 17:14:46 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-12-13 15:14:33 ----SD---- C:\Windows\system32\CompatTel
2014-12-13 15:14:33 ----D---- C:\Windows\AppCompat
2014-12-13 15:14:32 ----SD---- C:\ProgramData\Microsoft
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\hr-HR
2014-12-13 15:14:31 ----D---- C:\Windows\SYSWOW64\bg-BG
2014-12-13 15:14:31 ----D---- C:\Program Files\Internet Explorer
2014-12-13 15:14:31 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sl-SI
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\ro-RO
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lv-LV
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\lt-LT
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\et-EE
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-13 15:14:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sr-Latn-CS
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sl-SI
2014-12-13 15:14:29 ----D---- C:\Windows\system32\sk-SK
2014-12-13 15:14:29 ----D---- C:\Windows\system32\ro-RO
2014-12-13 15:14:29 ----D---- C:\Windows\system32\pl-PL
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lv-LV
2014-12-13 15:14:29 ----D---- C:\Windows\system32\lt-LT
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hu-HU
2014-12-13 15:14:29 ----D---- C:\Windows\system32\hr-HR
2014-12-13 15:14:29 ----D---- C:\Windows\system32\et-EE
2014-12-13 15:14:29 ----D---- C:\Windows\system32\cs-CZ
2014-12-13 15:14:29 ----D---- C:\Windows\system32\bg-BG
2014-12-13 15:14:28 ----D---- C:\Windows\system32\en-US
2014-12-13 15:14:28 ----D---- C:\Windows\PolicyDefinitions
2014-12-13 14:40:14 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 11:13:33 ----D---- C:\Windows\system32\MRT
2014-12-11 11:02:39 ----D---- C:\Windows\debug
2014-12-11 11:02:36 ----A---- C:\Windows\system32\MRT.exe
2014-12-11 09:17:11 ----D---- C:\Windows\system32\catroot2
2014-12-10 08:56:59 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-12-10 08:56:55 ----D---- C:\Windows\Minidump
2014-12-10 08:56:55 ----D---- C:\Windows\Logs
2014-12-09 23:23:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-09 23:04:24 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-12-07 12:50:22 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-12-07 03:00:36 ----D---- C:\ProgramData\Origin
2014-12-06 12:38:00 ----D---- C:\Windows\SYSWOW64\directx
2014-11-29 01:40:56 ----D---- C:\Users\asus\AppData\Roaming\Skype
2014-11-28 23:46:51 ----D---- C:\Program Files (x86)\Common Files
2014-11-28 23:46:29 ----D---- C:\ProgramData\Skype
2014-11-19 09:47:55 ----D---- C:\Users
2014-11-17 21:22:03 ----D---- C:\Windows\system32\drivers\etc
2014-11-16 02:52:42 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-11-14 16:08:38 ----N---- C:\Windows\win.ini
2014-11-13 17:56:28 ----RSD---- C:\Windows\assembly
2014-11-12 21:01:00 ----RSD---- C:\Windows\Fonts
2014-11-10 14:07:37 ----SHD---- C:\Boot
2014-11-01 10:55:30 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-10-31 22:20:42 ----D---- C:\Windows\system32\GroupPolicy
2014-10-31 20:36:25 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-10-31 19:35:58 ----D---- C:\Windows\system32\DriverStore
2014-10-31 16:04:08 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-10-31 09:40:20 ----D---- C:\Program Files\Common Files
2014-10-31 09:12:14 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Pro
2014-10-31 00:29:25 ----D---- C:\Windows\system32\catroot
2014-10-30 12:25:26 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-29 23:22:36 ----D---- C:\ProgramData\HostIt
2014-10-28 14:47:42 ----D---- C:\ProgramData\Oracle
2014-10-27 19:58:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-27 19:46:49 ----D---- C:\Program Files (x86)\Microsoft
2014-10-27 19:29:19 ----D---- C:\Users\asus\AppData\Roaming\Ubisoft
2014-10-16 13:52:40 ----D---- C:\Program Files\Windows Media Player
2014-10-16 13:52:40 ----D---- C:\Program Files (x86)\Windows Media Player
2014-10-16 13:52:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 13:52:37 ----D---- C:\Windows\system32\Dism
2014-10-16 13:52:30 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 13:52:30 ----D---- C:\Windows\system32\Boot
2014-10-12 11:02:27 ----D---- C:\Users\asus\AppData\Roaming\Tropico 5
2014-10-04 22:21:07 ----D---- C:\Users\asus\AppData\Roaming\Samsung
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 afw;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2010-04-20 39528]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SandBox;SandBox; \??\C:\Windows\system32\drivers\SandBox64.sys [2011-03-21 1097672]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 afwcore;afwcore; C:\Windows\system32\drivers\afwcore.sys [2010-09-27 424040]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 ASWFilt;ASWFilt; \??\C:\Windows\system32\Filt\ASWFilt64.dll [2011-03-21 49168]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-03 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
R3 VBEngNT;VBEngNT; \??\C:\Windows\system32\drivers\VBEngNT.sys [2011-02-02 293048]
R3 VBFilt;VBFilt; \??\C:\Windows\system32\Filt\VBFilt64.dll [2011-03-21 42976]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-08 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624]
S2 acssrv;Agnitum Client Security Service; D:\OUTPOS~1\acs.exe [2011-04-04 3501696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-12-20 2631456]
S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2014-12-07 1900400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zaneřáděný NTB
Pak je to OK, pokud není žádný jiný problém.Verdi píše:Hotovo. Při startu windows mi ale naběhla kontrola disku C:, která následně selhala a vypsalo mi to ať obnovím windows, že mi tam něco zmrvil nedávno nainstalovaný balíček. Win je ale zdá se zatím v poho.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zaneřáděný NTB
Pořád mi ale občas zamrzne na chvíli PC A taky se mi stává, že když zapnu PC a chci kliknou pravym tlač. myši na nějakou ikonu, tak to trvá třeba 20 sec než se mi ukáže nabídka. Stává se pouze při prvním kliknutí. Ale, pokud se toto nedá řešit tak děkuji za pročištění
A taky se mi stává, že když zapnu PC a chci kliknou pravym tlač. myši na nějakou ikonu, tak to trvá třeba 20 sec než se mi ukáže nabídka. Stává se pouze při prvním kliknutí. Ale, pokud se toto nedá řešit tak děkuji za pročištění -
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zaneřáděný NTB
Udělejte ještě kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zaneřáděný NTB
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 3.1.2015
Scan Time: 17:17:33
Logfile: log.txt
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2015.01.03.07
Rootkit Database: v2014.12.30.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: asus
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 396657
Time Elapsed: 43 min, 44 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 4
PUP.Optional.Platamoose.A, HKLM\SOFTWARE\WOW6432NODE\platamoose, , [8b787c77ee9bcb6beaeb600fc142b44c],
PUP.Optional.iWebar.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [dc273ab9afdafd391808f7ab6e95c63a],
PUP.Optional.SavePass.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\SavePass, , [000391620584b28463f2c8c847bca060],
PUP.Optional.Platamoose.A, HKU\S-1-5-21-818880072-586621381-3976108693-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\platamoose, , [cc3733c07d0c2e085f7783ec73909868],
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 32
PUP.Optional.SwiftBrowse, C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4\maintainer.bak, , [6e95fff40e7b32040c83b442d8292dd3],
PUP.Optional.SwiftBrowse, C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4\MAINTAINER.EXE.del, , [30d38a69e2a79a9cd7b8896d8e73ec14],
PUP.Optional.Softonic.A, C:\Users\asus\Downloads\kmplayer_downloader.exe, , [7a89fef5d4b564d228219fa1c839b14f],
PUP.Optional.OpenCandy, C:\Users\asus\Downloads\MediaInfo_Windows-setup.exe, , [986b39ba682178bedb35ddd021e445bb],
PUP.Optional.Rocketfuel, C:\Users\asus\Downloads\MediaPlayerClassic_RocketFuelInstaller.exe, , [54af7380fc8dc274b6e8ad3604fdf40c],
PUP.Optional.MultiPlug, C:\Users\asus\Downloads\sleepy-hollow-s02e06-arabic-subtitle.exe, , [e51ec92a88017abc675740a416eb16ea],
PUP.Optional.Amonetize, C:\Users\asus\Downloads\Space Engineers Update 01 026 Downloader__3687_i595531567_il4408603.exe, , [42c1bc37b5d47bbb42a0fc9a5fa26997],
PUP.Optional.Installrex, C:\Users\asus\Downloads\space engineers v01.024.exe, , [2ed58073078245f18f5085080ff2da26],
PUP.Optional.InstalleRex, C:\Users\asus\Downloads\Space Engineers v01.026.012 (1).exe, , [4bb8bb38058456e02668b7d92ed31ee2],
PUP.Optional.InstalleRex, C:\Users\asus\Downloads\Space Engineers v01.026.012.exe, , [b54e856e85048aac404ee4acba47669a],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-N1Pa4WLjf.exe, , [f90ace25fa8fd85e73c96093eb19a45c],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-N4Ga5SDAv.exe, , [3ec56a895e2baa8cf14bfbf8f60e4bb5],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-Nc0E7pFt2.exe, , [dd26a84b1f6a0d29d963a2519c6802fe],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-NcFaUMpHE.exe, , [8b78da19583182b4e05c797a6c988c74],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-NcJ518DTB.exe, , [4fb421d24a3fc3731e1e45ae0afa29d7],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-Nd5hXBaZZ.exe, , [8d7606ed0d7cdc5ab18b48ab22e259a7],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FreeZipSetup-N5npE8Afg.exe, , [778c36bd6029bd795fdd03f0fa0a8c74],
PUP.Optional.OneClickDownloader.A, C:\Users\asus\Downloads\Rollercoaster_Tycoon_3_rar_.exe, , [9b685b98731639fd142b61d15aa748b8],
PUP.Optional.OneClickDownloader.A, C:\Users\asus\Downloads\Roller_Coaster_Tycoon_3_Platinum_Works_100_tested_CarlesNeo_ (1).exe, , [37cc7a79c2c7e5517bc43bf718e9ab55],
PUP.Optional.OneClickDownloader.A, C:\Users\asus\Downloads\Roller_Coaster_Tycoon_3_Platinum_Works_100_tested_CarlesNeo_ (2).exe, , [25de17dc612876c0aa95bf73f1107f81],
PUP.Optional.OneClickDownloader.A, C:\Users\asus\Downloads\Roller_Coaster_Tycoon_3_Platinum_Works_100_tested_CarlesNeo_.exe, , [e221ea09a8e13600192684ae50b11ce4],
PUP.Optional.Bundle, C:\Users\asus\Downloads\MixxxDJInstaller.exe, , [5da652a1b7d2bc7ad661adc7fa0b02fe],
PUP.Optional.Installex, C:\Users\asus\Downloads\un Bosque Nevado Screensaver.exe, , [669df5fe96f3c07622cbb2d0b64be41c],
PUP.Optional.InstalleRex, C:\Users\asus\Downloads\Keen Software House.rar.exe, , [9f64d1223f4aba7c7816ace4d42d2fd1],
PUP.Optional.OpenCandy, C:\Users\asus\Downloads\PowerISO6-x64.exe, , [e320d81b5039be78b55b2d802cd9fa06],
PUP.Optional.OpenCandy, C:\Users\asus\Downloads\DTLite4491-0356 (1).exe, , [5ba86c87b8d1fd39db350aa352b38977],
PUP.Optional.OpenCandy, C:\Users\asus\Downloads\DTLite4491-0356.exe, , [e91a5a990c7d57df0808affe6b9ad32d],
PUP.Optional.Goobzo, C:\Users\asus\AppData\Local\Installer\Install_1120\setup.exe, , [24df31c28cfddc5ac4800d64bf46ac54],
PUP.Optional.Goobzo, C:\Users\asus\AppData\Local\Installer\Install_24543\setup.exe, , [b251c52ed6b384b2a69e48293cc9eb15],
PUP.Optional.ShopperPro, C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_313535313832383330302d3437415a556c2a3223346c41, , [5ea5856e63269a9cee23a5d2788b48b8],
PUP.Optional.ShopperPro, C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_313535313832383330302d5a4a6c414a34572a506c415a, , [ee156e85becbcb6b759c40375ca74ab6],
Trojan.Agent, C:\Windows\hosts, , [c83b37bc622762d45b1f52b749bbf30d],
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 3.1.2015
Scan Time: 17:17:33
Logfile: log.txt
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2015.01.03.07
Rootkit Database: v2014.12.30.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: asus
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 396657
Time Elapsed: 43 min, 44 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 4
PUP.Optional.Platamoose.A, HKLM\SOFTWARE\WOW6432NODE\platamoose, , [8b787c77ee9bcb6beaeb600fc142b44c],
PUP.Optional.iWebar.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [dc273ab9afdafd391808f7ab6e95c63a],
PUP.Optional.SavePass.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\SavePass, , [000391620584b28463f2c8c847bca060],
PUP.Optional.Platamoose.A, HKU\S-1-5-21-818880072-586621381-3976108693-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\platamoose, , [cc3733c07d0c2e085f7783ec73909868],
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 32
PUP.Optional.SwiftBrowse, C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4\maintainer.bak, , [6e95fff40e7b32040c83b442d8292dd3],
PUP.Optional.SwiftBrowse, C:\ProgramData\dd3b5d53-bf25-4338-af90-e70a6e59f0d4\MAINTAINER.EXE.del, , [30d38a69e2a79a9cd7b8896d8e73ec14],
PUP.Optional.Softonic.A, C:\Users\asus\Downloads\kmplayer_downloader.exe, , [7a89fef5d4b564d228219fa1c839b14f],
PUP.Optional.OpenCandy, C:\Users\asus\Downloads\MediaInfo_Windows-setup.exe, , [986b39ba682178bedb35ddd021e445bb],
PUP.Optional.Rocketfuel, C:\Users\asus\Downloads\MediaPlayerClassic_RocketFuelInstaller.exe, , [54af7380fc8dc274b6e8ad3604fdf40c],
PUP.Optional.MultiPlug, C:\Users\asus\Downloads\sleepy-hollow-s02e06-arabic-subtitle.exe, , [e51ec92a88017abc675740a416eb16ea],
PUP.Optional.Amonetize, C:\Users\asus\Downloads\Space Engineers Update 01 026 Downloader__3687_i595531567_il4408603.exe, , [42c1bc37b5d47bbb42a0fc9a5fa26997],
PUP.Optional.Installrex, C:\Users\asus\Downloads\space engineers v01.024.exe, , [2ed58073078245f18f5085080ff2da26],
PUP.Optional.InstalleRex, C:\Users\asus\Downloads\Space Engineers v01.026.012 (1).exe, , [4bb8bb38058456e02668b7d92ed31ee2],
PUP.Optional.InstalleRex, C:\Users\asus\Downloads\Space Engineers v01.026.012.exe, , [b54e856e85048aac404ee4acba47669a],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-N1Pa4WLjf.exe, , [f90ace25fa8fd85e73c96093eb19a45c],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-N4Ga5SDAv.exe, , [3ec56a895e2baa8cf14bfbf8f60e4bb5],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-Nc0E7pFt2.exe, , [dd26a84b1f6a0d29d963a2519c6802fe],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-NcFaUMpHE.exe, , [8b78da19583182b4e05c797a6c988c74],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-NcJ518DTB.exe, , [4fb421d24a3fc3731e1e45ae0afa29d7],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FLVPlayerSetup-Nd5hXBaZZ.exe, , [8d7606ed0d7cdc5ab18b48ab22e259a7],
PUP.Optional.Somoto.A, C:\Users\asus\Downloads\FreeZipSetup-N5npE8Afg.exe, , [778c36bd6029bd795fdd03f0fa0a8c74],
PUP.Optional.OneClickDownloader.A, C:\Users\asus\Downloads\Rollercoaster_Tycoon_3_rar_.exe, , [9b685b98731639fd142b61d15aa748b8],
PUP.Optional.OneClickDownloader.A, C:\Users\asus\Downloads\Roller_Coaster_Tycoon_3_Platinum_Works_100_tested_CarlesNeo_ (1).exe, , [37cc7a79c2c7e5517bc43bf718e9ab55],
PUP.Optional.OneClickDownloader.A, C:\Users\asus\Downloads\Roller_Coaster_Tycoon_3_Platinum_Works_100_tested_CarlesNeo_ (2).exe, , [25de17dc612876c0aa95bf73f1107f81],
PUP.Optional.OneClickDownloader.A, C:\Users\asus\Downloads\Roller_Coaster_Tycoon_3_Platinum_Works_100_tested_CarlesNeo_.exe, , [e221ea09a8e13600192684ae50b11ce4],
PUP.Optional.Bundle, C:\Users\asus\Downloads\MixxxDJInstaller.exe, , [5da652a1b7d2bc7ad661adc7fa0b02fe],
PUP.Optional.Installex, C:\Users\asus\Downloads\un Bosque Nevado Screensaver.exe, , [669df5fe96f3c07622cbb2d0b64be41c],
PUP.Optional.InstalleRex, C:\Users\asus\Downloads\Keen Software House.rar.exe, , [9f64d1223f4aba7c7816ace4d42d2fd1],
PUP.Optional.OpenCandy, C:\Users\asus\Downloads\PowerISO6-x64.exe, , [e320d81b5039be78b55b2d802cd9fa06],
PUP.Optional.OpenCandy, C:\Users\asus\Downloads\DTLite4491-0356 (1).exe, , [5ba86c87b8d1fd39db350aa352b38977],
PUP.Optional.OpenCandy, C:\Users\asus\Downloads\DTLite4491-0356.exe, , [e91a5a990c7d57df0808affe6b9ad32d],
PUP.Optional.Goobzo, C:\Users\asus\AppData\Local\Installer\Install_1120\setup.exe, , [24df31c28cfddc5ac4800d64bf46ac54],
PUP.Optional.Goobzo, C:\Users\asus\AppData\Local\Installer\Install_24543\setup.exe, , [b251c52ed6b384b2a69e48293cc9eb15],
PUP.Optional.ShopperPro, C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_313535313832383330302d3437415a556c2a3223346c41, , [5ea5856e63269a9cee23a5d2788b48b8],
PUP.Optional.ShopperPro, C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_313535313832383330302d5a4a6c414a34572a506c415a, , [ee156e85becbcb6b759c40375ca74ab6],
Trojan.Agent, C:\Windows\hosts, , [c83b37bc622762d45b1f52b749bbf30d],
Physical Sectors: 0
(No malicious items detected)
(end)
Přispějete na provoz fóra?