Zasekaný NTB

[Verdi]

Zdravím. Mám strašně zasekaný NTB. Už při startu se mi zdá že se mi pouští zbytečnosti, ale koukal jsem a víc věcí eliminovat už nejde. Noťas se chová dosti divně. Chvíli jde v pohodě, poté se sekne, třeba jen v prohlížeči.. Tak prosím o kontrolu. Dík moc. Posílám RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-09-05 09:48:05
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 83 GB (41%) free of 200 GB
Total RAM: 4000 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:48:13, on 5.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\SysWOW64\ACEngSvr.exe
D:\TeamViewer\TeamViewer.exe
D:\WhatPulse2\whatpulse.exe
C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\asus.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
O4 - HKLM\..\Run: [BCSSync] "D:\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [WhatPulse] "D:\WhatPulse2\whatpulse.exe"
O4 - HKCU\..\Run: [OffersWizard update] C:\Users\asus\AppData\Local\{CEE54DD1-BADF-4788-B9FC-76697CF85768}\OffersWizard.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C294DF9-8A39-4845-8304-97AF13BD3791}: Domain = ncpa.cpl
O18 - Protocol: tmbp - (no CLSID) - (no file)
O18 - Protocol: tmpx - (no CLSID) - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\windows\jaksta\ac\x86\jaudcap.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: postgresql-x64-9.0 - PostgreSQL Server 9.0 (postgresql-x64-9.0) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe
O23 - Service: postgresql-x64-9.3 - PostgreSQL Server 9.3 (postgresql-x64-9.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - D:\System Explorer\service\SystemExplorerService64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - D:\TeamViewer\TeamViewer_Service.exe
O23 - Service: TiMiniService - Unknown owner - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 13143 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 1440784
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
\??\C:\Windows\system32\conhost.exe "-1155488546-70469001821066947821920042694-70222580810518750431801681378-2093123961
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
taskeng.exe {D4C12ED6-CA84-4169-B77E-02E34400BFFE}
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
taskeng.exe {CC44294B-3D04-4E88-8B57-48A45CBCA154}
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
C:\Windows\system32\svchost.exe -k imgsvc
"D:\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "789439429-1914229482-19959763621424975395936240122-299255611-9552251161744814362
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "636" "632"
WLIDSvcM.exe 3168
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "302679351-686232477-1987793077-954173158-776378331-25762619-447533772-414983511
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1072" "1068"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "800" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "816" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "800"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "816"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1240" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1256" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1240" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "1256"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "1240"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\wbem\wmiprvse.exe
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
ATKOSD.exe
KBFiltr.exe
WDC.exe
"D:\TeamViewer\TeamViewer.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"D:\TeamViewer\tv_w32.exe" --action hooks --log D:\TeamViewer\TeamViewer10_Logfile.log
"D:\TeamViewer\tv_x64.exe" --action hooks --log D:\TeamViewer\TeamViewer10_Logfile.log
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\CompatTelRunner.exe
\??\C:\Windows\system32\conhost.exe "2157954501371440811-1012373055663268015-360109670-315520637-1048545464679343424
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
D:\WhatPulse2\whatpulse-watchdog.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="812.0.1561698104\969976769" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,45 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x6742 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.901.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="812.3.1894377979\1597251351" --font-cache-shared-handle=3916 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="812.17.1207151653\1479675237" --font-cache-shared-handle=2076 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="812.19.528943737\1875616984" --font-cache-shared-handle=6896 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="812.20.897269891\81942744" --font-cache-shared-handle=4896 /prefetch:673131151
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532

"C:\Users\asus\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - D:\IObit Uninstaller\UninstallExplorer64.dll [2014-12-20 2471744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2015-04-30 1337000]
"AutoKMS"=C:\Windows\AutoKMS.exe [2015-05-09 615936]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2015-05-16 3681792]
"OffersWizard update"=C:\Users\asus\AppData\Local\{CEE54DD1-BADF-4788-B9FC-76697CF85768}\OffersWizard.exe []
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-05-08 8322328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-05-08 8322328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-02-10 335232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-13 3391712]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-20 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
"BCSSync"=D:\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" c:\windows\jaksta\ac\x64\jaudcap.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-04 15:13:38 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-04 15:13:38 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-04 14:26:12 ----A---- C:\Windows\system32\basesrv.dll
2015-09-04 14:25:25 ----A---- C:\Windows\system32\sysmain.dll
2015-09-04 14:25:23 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-09-04 14:25:21 ----A---- C:\Windows\system32\msmmsp.dll
2015-09-04 14:24:19 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-09-04 14:24:19 ----A---- C:\Windows\system32\win32k.sys
2015-09-04 14:24:19 ----A---- C:\Windows\system32\FntCache.dll
2015-09-04 14:24:19 ----A---- C:\Windows\system32\DWrite.dll
2015-09-04 14:24:18 ----A---- C:\Windows\system32\atmfd.dll
2015-09-04 14:24:17 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\lpk.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\d3d10warp.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\atmlib.dll
2015-09-04 14:24:12 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-09-04 14:24:11 ----A---- C:\Windows\system32\fontsub.dll
2015-09-04 14:24:11 ----A---- C:\Windows\system32\dciman32.dll
2015-09-04 14:24:10 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-09-04 14:23:53 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-09-04 14:23:53 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-09-04 14:23:53 ----A---- C:\Windows\system32\iertutil.dll
2015-09-04 14:23:52 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-09-04 14:23:52 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-09-04 14:23:52 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-09-04 14:23:51 ----A---- C:\Windows\system32\iernonce.dll
2015-09-04 14:23:51 ----A---- C:\Windows\system32\ie4uinit.exe
2015-09-04 14:23:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-09-04 14:23:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-09-04 14:23:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-04 14:23:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-09-04 14:23:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-09-04 14:23:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-09-04 14:23:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-09-04 14:23:47 ----A---- C:\Windows\system32\iedkcs32.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-09-04 14:23:46 ----A---- C:\Windows\system32\urlmon.dll
2015-09-04 14:23:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-09-04 14:23:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-09-04 14:23:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-09-04 14:23:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-09-04 14:23:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-04 14:23:44 ----A---- C:\Windows\system32\msfeeds.dll
2015-09-04 14:23:44 ----A---- C:\Windows\system32\dxtrans.dll
2015-09-04 14:23:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-09-04 14:23:43 ----A---- C:\Windows\system32\iesetup.dll
2015-09-04 14:23:42 ----A---- C:\Windows\system32\ieapfltr.dll
2015-09-04 14:23:41 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-09-04 14:23:41 ----A---- C:\Windows\system32\vbscript.dll
2015-09-04 14:23:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-09-04 14:23:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-09-04 14:23:40 ----A---- C:\Windows\system32\jsproxy.dll
2015-09-04 14:23:40 ----A---- C:\Windows\system32\ieUnatt.exe
2015-09-04 14:23:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-09-04 14:23:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-09-04 14:23:38 ----A---- C:\Windows\system32\dxtmsft.dll
2015-09-04 14:23:37 ----A---- C:\Windows\system32\ieui.dll
2015-09-04 14:23:37 ----A---- C:\Windows\system32\ieframe.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\mshtmled.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\jscript9diag.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\jscript.dll
2015-09-04 14:23:35 ----A---- C:\Windows\system32\jscript9.dll
2015-09-04 14:23:33 ----A---- C:\Windows\system32\wininet.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\msrating.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\mshtml.dll
2015-09-04 14:23:23 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-09-04 14:23:23 ----A---- C:\Windows\system32\consent.exe
2015-09-04 14:23:23 ----A---- C:\Windows\system32\authui.dll
2015-09-04 14:23:23 ----A---- C:\Windows\system32\appinfo.dll
2015-09-04 14:22:59 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-09-04 14:22:59 ----A---- C:\Windows\system32\tzres.dll
2015-09-04 14:22:19 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-09-04 14:22:19 ----A---- C:\Windows\system32\tracerpt.exe
2015-09-04 14:22:18 ----A---- C:\Windows\system32\sechost.dll
2015-09-04 14:22:18 ----A---- C:\Windows\system32\logman.exe
2015-09-04 14:22:17 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-09-04 14:22:17 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-09-04 14:22:16 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-09-04 14:22:16 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-09-04 14:22:16 ----A---- C:\Windows\system32\typeperf.exe
2015-09-04 14:22:16 ----A---- C:\Windows\system32\relog.exe
2015-09-04 14:22:15 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-09-04 14:22:15 ----A---- C:\Windows\system32\diskperf.exe
2015-09-04 14:21:35 ----A---- C:\Windows\system32\UtcResources.dll
2015-09-04 14:21:35 ----A---- C:\Windows\system32\lsasrv.dll
2015-09-04 14:21:35 ----A---- C:\Windows\system32\diagtrack.dll
2015-09-04 14:21:34 ----A---- C:\Windows\system32\rpcrt4.dll
2015-09-04 14:21:34 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-09-04 14:21:34 ----A---- C:\Windows\system32\kerberos.dll
2015-09-04 14:21:33 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-09-04 14:21:33 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\schannel.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\ntdll.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\msv1_0.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\kernel32.dll
2015-09-04 14:21:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\tdh.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\KernelBase.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-09-04 14:21:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-09-04 14:21:31 ----A---- C:\Windows\system32\wow64win.dll
2015-09-04 14:21:31 ----A---- C:\Windows\system32\adtschema.dll
2015-09-04 14:21:30 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-09-04 14:21:30 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\wow64.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\ncrypt.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\winsrv.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\wdigest.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\TSpkg.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-09-04 14:21:29 ----A---- C:\Windows\system32\conhost.exe
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-09-04 14:21:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-09-04 14:21:28 ----A---- C:\Windows\system32\advapi32.dll
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\sspicli.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\srcore.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\smss.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\rstrui.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\lsass.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\csrsrv.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\cryptbase.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\auditpol.exe
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\sspisrv.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\srclient.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\secur32.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\ntvdm64.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\msaudite.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\credssp.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-04 14:21:25 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-09-04 14:21:25 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-09-04 14:21:25 ----A---- C:\Windows\system32\wow64cpu.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-04 14:21:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\user.exe
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-09-04 14:21:23 ----A---- C:\Windows\system32\msobjs.dll
2015-09-04 14:21:23 ----A---- C:\Windows\system32\apisetschema.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\wintrust.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\cryptsvc.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\crypt32.dll
2015-09-04 14:20:55 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-09-04 14:20:55 ----A---- C:\Windows\system32\cryptnet.dll
2015-09-04 14:20:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-09-04 14:20:30 ----A---- C:\Windows\system32\gdi32.dll
2015-09-04 14:20:05 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-09-04 14:20:05 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-09-04 14:20:05 ----A---- C:\Windows\system32\msxml6.dll
2015-09-04 14:20:05 ----A---- C:\Windows\system32\msxml3.dll
2015-09-04 14:20:04 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\system32\msxml6r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\system32\msxml3r.dll
2015-09-04 14:20:02 ----A---- C:\Windows\system32\wmp.dll
2015-09-04 14:20:01 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-09-04 14:20:00 ----A---- C:\Windows\system32\spwmp.dll
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-09-04 14:19:59 ----A---- C:\Windows\system32\dxmasf.dll
2015-09-04 14:19:58 ----A---- C:\Windows\system32\wmploc.DLL
2015-09-04 14:19:57 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-09-04 14:19:57 ----A---- C:\Windows\system32\notepad.exe
2015-09-04 14:19:57 ----A---- C:\Windows\notepad.exe
2015-09-04 14:19:55 ----A---- C:\Windows\system32\msi.dll
2015-09-04 14:19:54 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-09-04 14:19:54 ----A---- C:\Windows\system32\msiexec.exe
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-09-04 14:19:53 ----A---- C:\Windows\system32\msimsg.dll
2015-09-04 14:19:53 ----A---- C:\Windows\system32\msihnd.dll
2015-09-04 14:15:48 ----A---- C:\Windows\system32\comctl32.dll
2015-09-04 14:15:47 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-09-04 14:15:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-09-04 14:15:45 ----A---- C:\Windows\system32\ole32.dll
2015-09-04 14:15:40 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\system32\WebClnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\system32\davclnt.dll
2015-09-04 14:15:35 ----A---- C:\Windows\system32\wksprt.exe
2015-09-04 14:15:34 ----A---- C:\Windows\system32\mstscax.dll
2015-09-04 14:15:33 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-09-04 14:15:33 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-09-04 14:15:32 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-09-04 14:15:32 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-09-04 14:15:32 ----A---- C:\Windows\system32\tsgqec.dll
2015-09-04 14:11:18 ----A---- C:\Windows\system32\generaltel.dll
2015-09-04 14:11:18 ----A---- C:\Windows\system32\devinv.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\invagent.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\appraiser.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\aepic.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\aeinv.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\acmigration.dll
2015-09-04 14:11:16 ----A---- C:\Windows\system32\aepdu.dll
2015-09-04 14:11:15 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-09-04 14:11:01 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-09-04 14:11:01 ----A---- C:\Windows\system32\rdpcorets.dll
2015-09-04 14:10:57 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-09-04 14:10:57 ----A---- C:\Windows\system32\dwmcore.dll
2015-09-04 14:10:56 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-09-04 14:10:56 ----A---- C:\Windows\system32\dwmapi.dll
2015-09-04 14:10:15 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-09-04 14:10:15 ----A---- C:\Windows\system32\cewmdm.dll
2015-09-04 13:56:27 ----A---- C:\Windows\system32\shell32.dll
2015-09-04 13:56:24 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-09-04 13:54:05 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-09-04 13:54:05 ----A---- C:\Windows\system32\wuauclt.exe
2015-09-04 13:54:05 ----A---- C:\Windows\system32\wuapp.exe
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wuwebv.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wups2.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wups.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wudriver.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wucltux.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wuapi.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-09-04 13:54:03 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-11 22:22:23 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe

======List of files/folders modified in the last 1 month======

2015-09-05 09:48:07 ----D---- C:\Program Files\trend micro
2015-09-05 09:42:22 ----D---- C:\Windows\system32\config
2015-09-05 09:40:28 ----D---- C:\Windows\Temp
2015-09-05 09:32:29 ----D---- C:\Windows\SoftwareDistribution
2015-09-05 09:26:50 ----A---- C:\Windows\SYSWOW64\log.txt
2015-09-05 09:24:58 ----D---- C:\Windows\system32\Tasks
2015-09-05 09:23:46 ----D---- C:\Windows\Minidump
2015-09-05 09:23:42 ----D---- C:\Windows
2015-09-04 18:16:17 ----D---- C:\Windows\System32
2015-09-04 18:16:17 ----D---- C:\Windows\inf
2015-09-04 18:16:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-04 18:12:53 ----D---- C:\Windows\Prefetch
2015-09-04 16:05:19 ----D---- C:\Windows\Microsoft.NET
2015-09-04 16:04:37 ----RSD---- C:\Windows\assembly
2015-09-04 15:50:25 ----D---- C:\Windows\winsxs
2015-09-04 15:45:06 ----SD---- C:\Windows\system32\CompatTel
2015-09-04 15:45:05 ----D---- C:\Windows\SysWOW64
2015-09-04 15:45:05 ----D---- C:\Windows\system32\wbem
2015-09-04 15:45:05 ----D---- C:\Windows\system32\appraiser
2015-09-04 15:45:05 ----D---- C:\Windows\AppPatch
2015-09-04 15:45:04 ----D---- C:\Program Files\Windows Media Player
2015-09-04 15:45:04 ----D---- C:\Program Files (x86)\Windows Media Player
2015-09-04 15:45:03 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-09-04 15:45:03 ----D---- C:\Windows\system32\drivers
2015-09-04 15:45:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-09-04 15:45:02 ----D---- C:\Windows\system32\cs-CZ
2015-09-04 15:45:01 ----D---- C:\Program Files\Internet Explorer
2015-09-04 15:45:00 ----D---- C:\Windows\SYSWOW64\en-US
2015-09-04 15:44:58 ----D---- C:\Windows\system32\en-US
2015-09-04 15:44:58 ----D---- C:\Windows\PolicyDefinitions
2015-09-04 15:44:56 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-04 15:16:46 ----SHD---- C:\Windows\Installer
2015-09-04 15:16:46 ----SHD---- C:\Config.Msi
2015-09-04 15:12:01 ----D---- C:\Program Files\Microsoft Silverlight
2015-09-04 15:12:01 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-09-04 15:07:31 ----D---- C:\ProgramData\Microsoft Help
2015-09-04 14:44:49 ----A---- C:\Windows\win.ini
2015-09-04 14:42:10 ----D---- C:\Windows\system32\MRT
2015-09-04 14:29:35 ----D---- C:\Windows\debug
2015-09-04 14:28:12 ----SHD---- C:\System Volume Information
2015-09-04 14:16:25 ----D---- C:\Windows\system32\catroot2
2015-09-03 22:50:37 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-09-02 15:49:42 ----D---- C:\Windows\system32\NDF
2015-09-01 16:47:39 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2015-08-30 15:19:28 ----D---- C:\Program Files (x86)\Battle.net
2015-08-28 17:05:55 ----RD---- C:\Program Files (x86)
2015-08-28 17:05:50 ----D---- C:\Windows\Tasks
2015-08-22 08:29:46 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2015-08-22 08:29:34 ----D---- C:\Windows\Logs
2015-08-13 19:41:52 ----D---- C:\Users\asus\AppData\Roaming\Skype
2015-08-11 22:22:51 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-03-04 280376]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 124568]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-04 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S1 wfhpzyof;wfhpzyof; \??\C:\Windows\system32\drivers\wfhpzyof.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-09 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-04-30 23816]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 TeamViewer;TeamViewer 10; D:\TeamViewer\TeamViewer_Service.exe [2015-07-29 5613328]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2015-04-30 366544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11 269000]
S3 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[Verdi]

# AdwCleaner v4.202 - Log vytvořen 05/09/2015 v 11:36:52
# Aktualizováno 23/04/2015 by Xplode
# Databáze : 2015-09-04.4 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : asus - ASUS-PC
# Spuštěno z : C:\Users\asus\Desktop\adwcleaner_4.202.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Soubor Smazáno : C:\Program Files (x86)\Common Files\config\uninstinethnfd.exe

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Control\Class\{0014298C-A9BA-440D-AAA8-AD12C7010EE5}
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Control\Class\{181A06EA-B82C-47DE-B851-E20FD0E1CC7D}
Hodnota Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [OffersWizard update]
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{61AB12E1-A5FF-11D1-B2E9-444553540000}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{82351433-9094-11D1-A24B-00A0C932C7DF}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Klíč Smazáno : HKCU\Software\OffersWizard
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\OffersWizard

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17937


-\\ Google Chrome v45.0.2454.85


-\\ Comodo Dragon v


-\\ Chrome Canary v


*************************

AdwCleaner[R0].txt - [17821 bytů] - [20/07/2014 13:34:09]
AdwCleaner[R1].txt - [6262 bytů] - [21/07/2014 21:03:10]
AdwCleaner[R2].txt - [10738 bytů] - [06/11/2014 19:37:04]
AdwCleaner[R3].txt - [2424 bytů] - [14/11/2014 17:21:52]
AdwCleaner[R4].txt - [2929 bytů] - [01/01/2015 23:38:22]
AdwCleaner[R5].txt - [1372 bytů] - [29/01/2015 18:09:26]
AdwCleaner[R6].txt - [2901 bytů] - [23/04/2015 21:02:25]
AdwCleaner[R7].txt - [1830 bytů] - [27/05/2015 13:12:19]
AdwCleaner[R8].txt - [2835 bytů] - [05/09/2015 11:27:42]
AdwCleaner[S0].txt - [16162 bytů] - [20/07/2014 13:35:42]
AdwCleaner[S1].txt - [6441 bytů] - [21/07/2014 21:04:35]
AdwCleaner[S2].txt - [10996 bytů] - [06/11/2014 19:39:15]
AdwCleaner[S3].txt - [2894 bytů] - [01/01/2015 23:41:35]
AdwCleaner[S4].txt - [1436 bytů] - [29/01/2015 18:12:31]
AdwCleaner[S5].txt - [2835 bytů] - [23/04/2015 21:04:11]
AdwCleaner[S6].txt - [1888 bytů] - [27/05/2015 13:13:55]
AdwCleaner[S7].txt - [2690 bytů] - [05/09/2015 11:36:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [2748 bytů] ##########

[Rudy]

Dejte nový log RSIT.

[Verdi]

RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-09-05 12:45:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 83 GB (41%) free of 200 GB
Total RAM: 4000 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:45:48, on 5.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\SysWOW64\ACEngSvr.exe
D:\WhatPulse2\whatpulse.exe
C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
D:\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\asus.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
O4 - HKLM\..\Run: [BCSSync] "D:\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [WhatPulse] "D:\WhatPulse2\whatpulse.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C294DF9-8A39-4845-8304-97AF13BD3791}: Domain = ncpa.cpl
O18 - Protocol: tmbp - (no CLSID) - (no file)
O18 - Protocol: tmpx - (no CLSID) - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\windows\jaksta\ac\x86\jaudcap.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: postgresql-x64-9.0 - PostgreSQL Server 9.0 (postgresql-x64-9.0) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe
O23 - Service: postgresql-x64-9.3 - PostgreSQL Server 9.3 (postgresql-x64-9.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - D:\System Explorer\service\SystemExplorerService64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - D:\TeamViewer\TeamViewer_Service.exe
O23 - Service: TiMiniService - Unknown owner - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 13385 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 2685792
\??\C:\Windows\system32\conhost.exe "-713717300182014864611488005281538422075247266841362259190-9101524631930290672
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
taskeng.exe {F915A722-736E-4DD7-B205-6FD712A5B542}
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
taskeng.exe {491409D8-42D1-48DA-A197-5758DFE76334}
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "-791215286-822484623-1475575523-9916395361806530899-447930120-4053165521983893637
C:\Windows\system32\svchost.exe -k imgsvc
"D:\TeamViewer\TeamViewer_Service.exe"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "636" "632"
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "1481949594-15108571771025239590-1396760594-2031264171-255836611576965572-1336214076
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1072" "1068"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1240" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1256" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1240" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "1256"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "1240"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "800" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "824" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "800"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "824"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
WLIDSvcM.exe 3900
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
C:\Windows\system32\SearchIndexer.exe /Embedding
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d9a9905c-4058-4c6c-af84-ef85304ce0f3 -SystemEventPortName:HostProcess-3cbc916e-b94e-433a-adc7-639ae6c3a5b0 -IoCancelEventPortName:HostProcess-35e2fef8-c822-4c31-b4d3-7bbccfcf2062 -NonStateChangingEventPortName:HostProcess-d7a1df50-7d1f-44d7-89d5-42d719a42db1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:32dfdf35-95df-426d-9658-435bcaeddaea -DeviceGroupId:WpdFsGroup
ATKOSD.exe
KBFiltr.exe
WDC.exe
"D:\TeamViewer\TeamViewer.exe"
"D:\TeamViewer\tv_w32.exe" --action hooks --log D:\TeamViewer\TeamViewer10_Logfile.log
"D:\TeamViewer\tv_x64.exe" --action hooks --log D:\TeamViewer\TeamViewer10_Logfile.log
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5352.0.628302842\2102428678" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,45 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x6742 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.901.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.2.2046144215\81960432" --font-cache-shared-handle=2760 /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
D:\WhatPulse2\whatpulse-watchdog.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.6.1338763771\432208292" --font-cache-shared-handle=3764 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.9.1016706140\2103018544" --font-cache-shared-handle=4480 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5352.10.1655739970\1814997718" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.14.1285823561\789896214" --font-cache-shared-handle=6100 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.39.1226743664\1700695380" --font-cache-shared-handle=5524 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.55.1389705958\448470449" --font-cache-shared-handle=4368 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.59.333308135\680707103" --font-cache-shared-handle=5820 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.60.1584373705\877909999" --font-cache-shared-handle=2092 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5352.61.1202912729\1585417698" --font-cache-shared-handle=5784 /prefetch:673131151

"C:\Users\asus\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2015-04-30 1337000]
"AutoKMS"=C:\Windows\AutoKMS.exe [2015-05-09 615936]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2015-05-16 3681792]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-05-08 8322328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-05-08 8322328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-02-10 335232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-13 3391712]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-20 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
"BCSSync"=D:\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" c:\windows\jaksta\ac\x64\jaudcap.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-04 15:13:38 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-04 15:13:38 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-04 14:26:12 ----A---- C:\Windows\system32\basesrv.dll
2015-09-04 14:25:25 ----A---- C:\Windows\system32\sysmain.dll
2015-09-04 14:25:23 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-09-04 14:25:21 ----A---- C:\Windows\system32\msmmsp.dll
2015-09-04 14:24:19 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-09-04 14:24:19 ----A---- C:\Windows\system32\win32k.sys
2015-09-04 14:24:19 ----A---- C:\Windows\system32\FntCache.dll
2015-09-04 14:24:19 ----A---- C:\Windows\system32\DWrite.dll
2015-09-04 14:24:18 ----A---- C:\Windows\system32\atmfd.dll
2015-09-04 14:24:17 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\lpk.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\d3d10warp.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\atmlib.dll
2015-09-04 14:24:12 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-09-04 14:24:11 ----A---- C:\Windows\system32\fontsub.dll
2015-09-04 14:24:11 ----A---- C:\Windows\system32\dciman32.dll
2015-09-04 14:24:10 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-09-04 14:23:53 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-09-04 14:23:53 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-09-04 14:23:53 ----A---- C:\Windows\system32\iertutil.dll
2015-09-04 14:23:52 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-09-04 14:23:52 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-09-04 14:23:52 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-09-04 14:23:51 ----A---- C:\Windows\system32\iernonce.dll
2015-09-04 14:23:51 ----A---- C:\Windows\system32\ie4uinit.exe
2015-09-04 14:23:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-09-04 14:23:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-09-04 14:23:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-04 14:23:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-09-04 14:23:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-09-04 14:23:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-09-04 14:23:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-09-04 14:23:47 ----A---- C:\Windows\system32\iedkcs32.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-09-04 14:23:46 ----A---- C:\Windows\system32\urlmon.dll
2015-09-04 14:23:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-09-04 14:23:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-09-04 14:23:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-09-04 14:23:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-09-04 14:23:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-04 14:23:44 ----A---- C:\Windows\system32\msfeeds.dll
2015-09-04 14:23:44 ----A---- C:\Windows\system32\dxtrans.dll
2015-09-04 14:23:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-09-04 14:23:43 ----A---- C:\Windows\system32\iesetup.dll
2015-09-04 14:23:42 ----A---- C:\Windows\system32\ieapfltr.dll
2015-09-04 14:23:41 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-09-04 14:23:41 ----A---- C:\Windows\system32\vbscript.dll
2015-09-04 14:23:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-09-04 14:23:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-09-04 14:23:40 ----A---- C:\Windows\system32\jsproxy.dll
2015-09-04 14:23:40 ----A---- C:\Windows\system32\ieUnatt.exe
2015-09-04 14:23:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-09-04 14:23:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-09-04 14:23:38 ----A---- C:\Windows\system32\dxtmsft.dll
2015-09-04 14:23:37 ----A---- C:\Windows\system32\ieui.dll
2015-09-04 14:23:37 ----A---- C:\Windows\system32\ieframe.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\mshtmled.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\jscript9diag.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\jscript.dll
2015-09-04 14:23:35 ----A---- C:\Windows\system32\jscript9.dll
2015-09-04 14:23:33 ----A---- C:\Windows\system32\wininet.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\msrating.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\mshtml.dll
2015-09-04 14:23:23 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-09-04 14:23:23 ----A---- C:\Windows\system32\consent.exe
2015-09-04 14:23:23 ----A---- C:\Windows\system32\authui.dll
2015-09-04 14:23:23 ----A---- C:\Windows\system32\appinfo.dll
2015-09-04 14:22:59 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-09-04 14:22:59 ----A---- C:\Windows\system32\tzres.dll
2015-09-04 14:22:19 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-09-04 14:22:19 ----A---- C:\Windows\system32\tracerpt.exe
2015-09-04 14:22:18 ----A---- C:\Windows\system32\sechost.dll
2015-09-04 14:22:18 ----A---- C:\Windows\system32\logman.exe
2015-09-04 14:22:17 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-09-04 14:22:17 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-09-04 14:22:16 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-09-04 14:22:16 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-09-04 14:22:16 ----A---- C:\Windows\system32\typeperf.exe
2015-09-04 14:22:16 ----A---- C:\Windows\system32\relog.exe
2015-09-04 14:22:15 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-09-04 14:22:15 ----A---- C:\Windows\system32\diskperf.exe
2015-09-04 14:21:35 ----A---- C:\Windows\system32\UtcResources.dll
2015-09-04 14:21:35 ----A---- C:\Windows\system32\lsasrv.dll
2015-09-04 14:21:35 ----A---- C:\Windows\system32\diagtrack.dll
2015-09-04 14:21:34 ----A---- C:\Windows\system32\rpcrt4.dll
2015-09-04 14:21:34 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-09-04 14:21:34 ----A---- C:\Windows\system32\kerberos.dll
2015-09-04 14:21:33 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-09-04 14:21:33 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\schannel.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\ntdll.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\msv1_0.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\kernel32.dll
2015-09-04 14:21:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\tdh.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\KernelBase.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-09-04 14:21:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-09-04 14:21:31 ----A---- C:\Windows\system32\wow64win.dll
2015-09-04 14:21:31 ----A---- C:\Windows\system32\adtschema.dll
2015-09-04 14:21:30 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-09-04 14:21:30 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\wow64.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\ncrypt.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\winsrv.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\wdigest.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\TSpkg.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-09-04 14:21:29 ----A---- C:\Windows\system32\conhost.exe
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-09-04 14:21:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-09-04 14:21:28 ----A---- C:\Windows\system32\advapi32.dll
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\sspicli.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\srcore.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\smss.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\rstrui.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\lsass.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\csrsrv.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\cryptbase.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\auditpol.exe
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\sspisrv.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\srclient.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\secur32.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\ntvdm64.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\msaudite.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\credssp.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-04 14:21:25 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-09-04 14:21:25 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-09-04 14:21:25 ----A---- C:\Windows\system32\wow64cpu.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-04 14:21:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\user.exe
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-09-04 14:21:23 ----A---- C:\Windows\system32\msobjs.dll
2015-09-04 14:21:23 ----A---- C:\Windows\system32\apisetschema.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\wintrust.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\cryptsvc.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\crypt32.dll
2015-09-04 14:20:55 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-09-04 14:20:55 ----A---- C:\Windows\system32\cryptnet.dll
2015-09-04 14:20:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-09-04 14:20:30 ----A---- C:\Windows\system32\gdi32.dll
2015-09-04 14:20:05 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-09-04 14:20:05 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-09-04 14:20:05 ----A---- C:\Windows\system32\msxml6.dll
2015-09-04 14:20:05 ----A---- C:\Windows\system32\msxml3.dll
2015-09-04 14:20:04 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\system32\msxml6r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\system32\msxml3r.dll
2015-09-04 14:20:02 ----A---- C:\Windows\system32\wmp.dll
2015-09-04 14:20:01 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-09-04 14:20:00 ----A---- C:\Windows\system32\spwmp.dll
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-09-04 14:19:59 ----A---- C:\Windows\system32\dxmasf.dll
2015-09-04 14:19:58 ----A---- C:\Windows\system32\wmploc.DLL
2015-09-04 14:19:57 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-09-04 14:19:57 ----A---- C:\Windows\system32\notepad.exe
2015-09-04 14:19:57 ----A---- C:\Windows\notepad.exe
2015-09-04 14:19:55 ----A---- C:\Windows\system32\msi.dll
2015-09-04 14:19:54 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-09-04 14:19:54 ----A---- C:\Windows\system32\msiexec.exe
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-09-04 14:19:53 ----A---- C:\Windows\system32\msimsg.dll
2015-09-04 14:19:53 ----A---- C:\Windows\system32\msihnd.dll
2015-09-04 14:15:48 ----A---- C:\Windows\system32\comctl32.dll
2015-09-04 14:15:47 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-09-04 14:15:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-09-04 14:15:45 ----A---- C:\Windows\system32\ole32.dll
2015-09-04 14:15:40 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\system32\WebClnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\system32\davclnt.dll
2015-09-04 14:15:35 ----A---- C:\Windows\system32\wksprt.exe
2015-09-04 14:15:34 ----A---- C:\Windows\system32\mstscax.dll
2015-09-04 14:15:33 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-09-04 14:15:33 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-09-04 14:15:32 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-09-04 14:15:32 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-09-04 14:15:32 ----A---- C:\Windows\system32\tsgqec.dll
2015-09-04 14:11:18 ----A---- C:\Windows\system32\generaltel.dll
2015-09-04 14:11:18 ----A---- C:\Windows\system32\devinv.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\invagent.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\appraiser.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\aepic.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\aeinv.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\acmigration.dll
2015-09-04 14:11:16 ----A---- C:\Windows\system32\aepdu.dll
2015-09-04 14:11:15 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-09-04 14:11:01 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-09-04 14:11:01 ----A---- C:\Windows\system32\rdpcorets.dll
2015-09-04 14:10:57 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-09-04 14:10:57 ----A---- C:\Windows\system32\dwmcore.dll
2015-09-04 14:10:56 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-09-04 14:10:56 ----A---- C:\Windows\system32\dwmapi.dll
2015-09-04 14:10:15 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-09-04 14:10:15 ----A---- C:\Windows\system32\cewmdm.dll
2015-09-04 13:56:27 ----A---- C:\Windows\system32\shell32.dll
2015-09-04 13:56:24 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-09-04 13:54:05 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-09-04 13:54:05 ----A---- C:\Windows\system32\wuauclt.exe
2015-09-04 13:54:05 ----A---- C:\Windows\system32\wuapp.exe
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wuwebv.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wups2.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wups.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wudriver.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wucltux.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wuapi.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-09-04 13:54:03 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-11 22:22:23 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe

======List of files/folders modified in the last 1 month======

2015-09-05 12:45:39 ----D---- C:\Program Files\trend micro
2015-09-05 11:54:37 ----D---- C:\Windows\Temp
2015-09-05 11:49:38 ----D---- C:\Windows\system32\config
2015-09-05 11:41:05 ----A---- C:\Windows\SYSWOW64\log.txt
2015-09-05 11:39:23 ----D---- C:\Windows\system32\Tasks
2015-09-05 11:36:54 ----D---- C:\AdwCleaner
2015-09-05 11:21:00 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2015-09-05 09:32:29 ----D---- C:\Windows\SoftwareDistribution
2015-09-05 09:23:46 ----D---- C:\Windows\Minidump
2015-09-05 09:23:42 ----D---- C:\Windows
2015-09-04 18:16:17 ----D---- C:\Windows\System32
2015-09-04 18:16:17 ----D---- C:\Windows\inf
2015-09-04 18:16:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-04 18:12:53 ----D---- C:\Windows\Prefetch
2015-09-04 16:05:19 ----D---- C:\Windows\Microsoft.NET
2015-09-04 16:04:37 ----RSD---- C:\Windows\assembly
2015-09-04 15:50:25 ----D---- C:\Windows\winsxs
2015-09-04 15:45:06 ----SD---- C:\Windows\system32\CompatTel
2015-09-04 15:45:05 ----D---- C:\Windows\SysWOW64
2015-09-04 15:45:05 ----D---- C:\Windows\system32\wbem
2015-09-04 15:45:05 ----D---- C:\Windows\system32\appraiser
2015-09-04 15:45:05 ----D---- C:\Windows\AppPatch
2015-09-04 15:45:04 ----D---- C:\Program Files\Windows Media Player
2015-09-04 15:45:04 ----D---- C:\Program Files (x86)\Windows Media Player
2015-09-04 15:45:03 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-09-04 15:45:03 ----D---- C:\Windows\system32\drivers
2015-09-04 15:45:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-09-04 15:45:02 ----D---- C:\Windows\system32\cs-CZ
2015-09-04 15:45:01 ----D---- C:\Program Files\Internet Explorer
2015-09-04 15:45:00 ----D---- C:\Windows\SYSWOW64\en-US
2015-09-04 15:44:58 ----D---- C:\Windows\system32\en-US
2015-09-04 15:44:58 ----D---- C:\Windows\PolicyDefinitions
2015-09-04 15:44:56 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-04 15:16:46 ----SHD---- C:\Windows\Installer
2015-09-04 15:16:46 ----SHD---- C:\Config.Msi
2015-09-04 15:12:01 ----D---- C:\Program Files\Microsoft Silverlight
2015-09-04 15:12:01 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-09-04 15:07:31 ----D---- C:\ProgramData\Microsoft Help
2015-09-04 14:44:49 ----A---- C:\Windows\win.ini
2015-09-04 14:42:10 ----D---- C:\Windows\system32\MRT
2015-09-04 14:29:35 ----D---- C:\Windows\debug
2015-09-04 14:28:12 ----SHD---- C:\System Volume Information
2015-09-04 14:16:25 ----D---- C:\Windows\system32\catroot2
2015-09-03 22:50:37 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-09-02 15:49:42 ----D---- C:\Windows\system32\NDF
2015-08-30 15:19:28 ----D---- C:\Program Files (x86)\Battle.net
2015-08-28 17:05:55 ----RD---- C:\Program Files (x86)
2015-08-28 17:05:50 ----D---- C:\Windows\Tasks
2015-08-22 08:29:46 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2015-08-22 08:29:34 ----D---- C:\Windows\Logs
2015-08-13 19:41:52 ----D---- C:\Users\asus\AppData\Roaming\Skype
2015-08-11 22:22:51 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-03-04 280376]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 124568]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-04 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
S0 Partizan;Partizan; C:\Windows\system32\drivers\Partizan.sys []
S1 wfhpzyof;wfhpzyof; \??\C:\Windows\system32\drivers\wfhpzyof.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-09 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-04-30 23816]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 TeamViewer;TeamViewer 10; D:\TeamViewer\TeamViewer_Service.exe [2015-07-29 5613328]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2015-04-30 366544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11 269000]
S3 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

[Rudy]

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\AutoKMS.exe
C:\Windows\SYSWOW64\acovcnt.exe

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AutoKMS"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]/64

:services
wfhpzyof
Partizan

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Doporučuji odinstalovat IOBit. V PC vám udělá více škody, než užitku.

[Verdi]

Vím, proto jsem si tam nechal jen iObit Uninstaller. Ale i ten plánuji smazat.
Zasílám log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by asus at 2015-09-05 15:41:11
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 83 GB (42%) free of 200 GB
Total RAM: 4000 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:41:20, on 5.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal

Running processes:
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Windows\SysWOW64\ACEngSvr.exe
D:\TeamViewer\TeamViewer.exe
D:\WhatPulse2\whatpulse.exe
C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\asus.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
O4 - HKLM\..\Run: [BCSSync] "D:\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [WhatPulse] "D:\WhatPulse2\whatpulse.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-818880072-586621381-3976108693-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C294DF9-8A39-4845-8304-97AF13BD3791}: Domain = ncpa.cpl
O18 - Protocol: tmbp - (no CLSID) - (no file)
O18 - Protocol: tmpx - (no CLSID) - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: c:\windows\jaksta\ac\x86\jaudcap.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: postgresql-x64-9.0 - PostgreSQL Server 9.0 (postgresql-x64-9.0) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe
O23 - Service: postgresql-x64-9.3 - PostgreSQL Server 9.3 (postgresql-x64-9.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - D:\System Explorer\service\SystemExplorerService64.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - D:\TeamViewer\TeamViewer_Service.exe
O23 - Service: TiMiniService - Unknown owner - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 12897 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
C:\Windows\system32\WLANExt.exe 3584544
\??\C:\Windows\system32\conhost.exe "-13378164811615235714-353749822-553986045-15133954571882521694-1040929477591407457
atieclxx
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {81CE038E-F7EE-4256-BDFE-8B0B2EF13B3E}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe"
"taskhost.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.0" -D "C:/Program Files/PostgreSQL/9.0/data" -w
"C:\Windows\AsScrPro.exe"
taskeng.exe {52084969-7968-4297-9F31-3998A523247C}
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
taskeng.exe {16FFB9A4-1E28-4DA5-9FF5-D8BE894097C2}
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"D:\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\PostgreSQL\9.0\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.0/data"
\??\C:\Windows\system32\conhost.exe "-9926048641841796612-394268585-2074714892-1765663400-1128199467705883889301820971
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
WLIDSvcM.exe 1800
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forklog" "636" "632"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\PostgreSQL\9.3\bin\postgres.exe" -D "C:/Program Files/PostgreSQL/9.3/data"
\??\C:\Windows\system32\conhost.exe "-1634902136-1019820582-244795069-5488813711135862700480839836-11499072062020698084
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "800" "-x3"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkboot" "808" "-x4"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkavlauncher" "800"
"C:/Program Files/PostgreSQL/9.0/bin/postgres.exe" "--forkcol" "808"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forklog" "1072" "1068"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1240" "-x4"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1244" "-x3"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkboot" "1240" "-x5"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkavlauncher" "1244"
"C:/Program Files/PostgreSQL/9.3/bin/postgres.exe" "--forkcol" "1240"
C:\Windows\system32\sppsvc.exe
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a064029c-6a3f-48b0-a8ef-16d5d802d155 -SystemEventPortName:HostProcess-6c0848c1-a1d2-46e2-bffc-000d0a82c290 -IoCancelEventPortName:HostProcess-3d0ac261-adfe-4bcc-845b-3642e4277348 -NonStateChangingEventPortName:HostProcess-d03c6b5f-3a65-4b5e-a686-a7a3e7ce91d3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:54d5b535-78e2-4e1f-88dc-b5b9ef2500dd -DeviceGroupId:WpdFsGroup
"D:\TeamViewer\TeamViewer.exe"
ATKOSD.exe
KBFiltr.exe
WDC.exe
"D:\TeamViewer\tv_w32.exe" --action hooks --log D:\TeamViewer\TeamViewer10_Logfile.log
"D:\TeamViewer\tv_x64.exe" --action hooks --log D:\TeamViewer\TeamViewer10_Logfile.log
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\WhatPulse2\whatpulse.exe"
"C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
D:\WhatPulse2\whatpulse-watchdog.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4908.0.386089714\1629873249" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,45 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x6742 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.901.0.0 --ignored=" --type=renderer " /prefetch:822062411
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4908.3.71495166\1107015897" --font-cache-shared-handle=3436 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_78/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4908.5.1493999157\551955464" --font-cache-shared-handle=3952 /prefetch:673131151
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Users\asus\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-03-18 1374936]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-21 2816808]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-07-21 98088]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-09 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2015-04-30 1337000]
"AutoKMS"=C:\Windows\AutoKMS.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WhatPulse"=D:\WhatPulse2\whatpulse.exe [2015-05-16 3681792]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-05-08 8322328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 7]
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2014-02-28 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-09-30 981664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BTMTrayAgent]
C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-05-08 8322328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-20 107816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
D:\DAEMON Tools Pro\DTProAgent.exe -autorun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
D:\Kies\KiesAirMessage.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
D:\Kies\Kies.exe [2014-02-14 1564992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
D:\Kies\KiesTrayAgent.exe [2014-02-14 311616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PokerStrategy.com SideKick]
C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy.com\PokerStrategy.com SideKick.appref-ms [2014-12-16 448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\puush]
C:\Program Files (x86)\puush\puush.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-18 13667032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SystemExplorerAutoStart]
D:\System Explorer\SystemExplorer.exe [2014-11-13 3391712]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2011-10-20 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-22 5716608]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-09-13 2317312]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-09-27 343168]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-09-30 799904]
"BCSSync"=D:\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" c:\windows\jaksta\ac\x64\jaudcap.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"midi5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-05 15:34:59 ----D---- C:\_OTM
2015-09-04 15:13:38 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-04 15:13:38 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-04 14:26:12 ----A---- C:\Windows\system32\basesrv.dll
2015-09-04 14:25:25 ----A---- C:\Windows\system32\sysmain.dll
2015-09-04 14:25:23 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-09-04 14:25:21 ----A---- C:\Windows\system32\msmmsp.dll
2015-09-04 14:24:19 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-09-04 14:24:19 ----A---- C:\Windows\system32\win32k.sys
2015-09-04 14:24:19 ----A---- C:\Windows\system32\FntCache.dll
2015-09-04 14:24:19 ----A---- C:\Windows\system32\DWrite.dll
2015-09-04 14:24:18 ----A---- C:\Windows\system32\atmfd.dll
2015-09-04 14:24:17 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\lpk.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\d3d10warp.dll
2015-09-04 14:24:13 ----A---- C:\Windows\system32\atmlib.dll
2015-09-04 14:24:12 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-09-04 14:24:11 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-09-04 14:24:11 ----A---- C:\Windows\system32\fontsub.dll
2015-09-04 14:24:11 ----A---- C:\Windows\system32\dciman32.dll
2015-09-04 14:24:10 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-09-04 14:23:53 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-09-04 14:23:53 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-09-04 14:23:53 ----A---- C:\Windows\system32\iertutil.dll
2015-09-04 14:23:52 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-09-04 14:23:52 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-09-04 14:23:52 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-09-04 14:23:51 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-09-04 14:23:51 ----A---- C:\Windows\system32\iernonce.dll
2015-09-04 14:23:51 ----A---- C:\Windows\system32\ie4uinit.exe
2015-09-04 14:23:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-09-04 14:23:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-09-04 14:23:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-04 14:23:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-09-04 14:23:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-09-04 14:23:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-09-04 14:23:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-09-04 14:23:47 ----A---- C:\Windows\system32\iedkcs32.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-09-04 14:23:46 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-09-04 14:23:46 ----A---- C:\Windows\system32\urlmon.dll
2015-09-04 14:23:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-09-04 14:23:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-09-04 14:23:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-09-04 14:23:44 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-09-04 14:23:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-04 14:23:44 ----A---- C:\Windows\system32\msfeeds.dll
2015-09-04 14:23:44 ----A---- C:\Windows\system32\dxtrans.dll
2015-09-04 14:23:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-09-04 14:23:43 ----A---- C:\Windows\system32\iesetup.dll
2015-09-04 14:23:42 ----A---- C:\Windows\system32\ieapfltr.dll
2015-09-04 14:23:41 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-09-04 14:23:41 ----A---- C:\Windows\system32\vbscript.dll
2015-09-04 14:23:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-09-04 14:23:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-09-04 14:23:40 ----A---- C:\Windows\system32\jsproxy.dll
2015-09-04 14:23:40 ----A---- C:\Windows\system32\ieUnatt.exe
2015-09-04 14:23:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-09-04 14:23:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-09-04 14:23:38 ----A---- C:\Windows\system32\dxtmsft.dll
2015-09-04 14:23:37 ----A---- C:\Windows\system32\ieui.dll
2015-09-04 14:23:37 ----A---- C:\Windows\system32\ieframe.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\mshtmled.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\jscript9diag.dll
2015-09-04 14:23:36 ----A---- C:\Windows\system32\jscript.dll
2015-09-04 14:23:35 ----A---- C:\Windows\system32\jscript9.dll
2015-09-04 14:23:33 ----A---- C:\Windows\system32\wininet.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\msrating.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-09-04 14:23:32 ----A---- C:\Windows\system32\mshtml.dll
2015-09-04 14:23:23 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-09-04 14:23:23 ----A---- C:\Windows\system32\consent.exe
2015-09-04 14:23:23 ----A---- C:\Windows\system32\authui.dll
2015-09-04 14:23:23 ----A---- C:\Windows\system32\appinfo.dll
2015-09-04 14:22:59 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-09-04 14:22:59 ----A---- C:\Windows\system32\tzres.dll
2015-09-04 14:22:19 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-09-04 14:22:19 ----A---- C:\Windows\system32\tracerpt.exe
2015-09-04 14:22:18 ----A---- C:\Windows\system32\sechost.dll
2015-09-04 14:22:18 ----A---- C:\Windows\system32\logman.exe
2015-09-04 14:22:17 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-09-04 14:22:17 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-09-04 14:22:16 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-09-04 14:22:16 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-09-04 14:22:16 ----A---- C:\Windows\system32\typeperf.exe
2015-09-04 14:22:16 ----A---- C:\Windows\system32\relog.exe
2015-09-04 14:22:15 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-09-04 14:22:15 ----A---- C:\Windows\system32\diskperf.exe
2015-09-04 14:21:35 ----A---- C:\Windows\system32\UtcResources.dll
2015-09-04 14:21:35 ----A---- C:\Windows\system32\lsasrv.dll
2015-09-04 14:21:35 ----A---- C:\Windows\system32\diagtrack.dll
2015-09-04 14:21:34 ----A---- C:\Windows\system32\rpcrt4.dll
2015-09-04 14:21:34 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-09-04 14:21:34 ----A---- C:\Windows\system32\kerberos.dll
2015-09-04 14:21:33 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-09-04 14:21:33 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\schannel.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\ntdll.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\msv1_0.dll
2015-09-04 14:21:33 ----A---- C:\Windows\system32\kernel32.dll
2015-09-04 14:21:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\tdh.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\KernelBase.dll
2015-09-04 14:21:32 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-09-04 14:21:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-09-04 14:21:31 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-09-04 14:21:31 ----A---- C:\Windows\system32\wow64win.dll
2015-09-04 14:21:31 ----A---- C:\Windows\system32\adtschema.dll
2015-09-04 14:21:30 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-09-04 14:21:30 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\wow64.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\ncrypt.dll
2015-09-04 14:21:30 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-09-04 14:21:29 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\winsrv.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\wdigest.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\TSpkg.dll
2015-09-04 14:21:29 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-09-04 14:21:29 ----A---- C:\Windows\system32\conhost.exe
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-09-04 14:21:28 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-09-04 14:21:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-09-04 14:21:28 ----A---- C:\Windows\system32\advapi32.dll
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-09-04 14:21:27 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\sspicli.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\srcore.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\smss.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\rstrui.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\lsass.exe
2015-09-04 14:21:27 ----A---- C:\Windows\system32\csrsrv.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\cryptbase.dll
2015-09-04 14:21:27 ----A---- C:\Windows\system32\auditpol.exe
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-09-04 14:21:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\sspisrv.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\srclient.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\secur32.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\ntvdm64.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\msaudite.dll
2015-09-04 14:21:26 ----A---- C:\Windows\system32\credssp.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-04 14:21:25 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-04 14:21:25 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-09-04 14:21:25 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-09-04 14:21:25 ----A---- C:\Windows\system32\wow64cpu.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-04 14:21:24 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-04 14:21:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\user.exe
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-09-04 14:21:23 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-09-04 14:21:23 ----A---- C:\Windows\system32\msobjs.dll
2015-09-04 14:21:23 ----A---- C:\Windows\system32\apisetschema.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-09-04 14:20:56 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\wintrust.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\cryptsvc.dll
2015-09-04 14:20:56 ----A---- C:\Windows\system32\crypt32.dll
2015-09-04 14:20:55 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-09-04 14:20:55 ----A---- C:\Windows\system32\cryptnet.dll
2015-09-04 14:20:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-09-04 14:20:30 ----A---- C:\Windows\system32\gdi32.dll
2015-09-04 14:20:05 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-09-04 14:20:05 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-09-04 14:20:05 ----A---- C:\Windows\system32\msxml6.dll
2015-09-04 14:20:05 ----A---- C:\Windows\system32\msxml3.dll
2015-09-04 14:20:04 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\system32\msxml6r.dll
2015-09-04 14:20:04 ----A---- C:\Windows\system32\msxml3r.dll
2015-09-04 14:20:02 ----A---- C:\Windows\system32\wmp.dll
2015-09-04 14:20:01 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-09-04 14:20:00 ----A---- C:\Windows\system32\spwmp.dll
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-09-04 14:19:59 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-09-04 14:19:59 ----A---- C:\Windows\system32\dxmasf.dll
2015-09-04 14:19:58 ----A---- C:\Windows\system32\wmploc.DLL
2015-09-04 14:19:57 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-09-04 14:19:57 ----A---- C:\Windows\system32\notepad.exe
2015-09-04 14:19:57 ----A---- C:\Windows\notepad.exe
2015-09-04 14:19:55 ----A---- C:\Windows\system32\msi.dll
2015-09-04 14:19:54 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-09-04 14:19:54 ----A---- C:\Windows\system32\msiexec.exe
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-09-04 14:19:53 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-09-04 14:19:53 ----A---- C:\Windows\system32\msimsg.dll
2015-09-04 14:19:53 ----A---- C:\Windows\system32\msihnd.dll
2015-09-04 14:15:48 ----A---- C:\Windows\system32\comctl32.dll
2015-09-04 14:15:47 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-09-04 14:15:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-09-04 14:15:45 ----A---- C:\Windows\system32\ole32.dll
2015-09-04 14:15:40 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\system32\WebClnt.dll
2015-09-04 14:15:40 ----A---- C:\Windows\system32\davclnt.dll
2015-09-04 14:15:35 ----A---- C:\Windows\system32\wksprt.exe
2015-09-04 14:15:34 ----A---- C:\Windows\system32\mstscax.dll
2015-09-04 14:15:33 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-09-04 14:15:33 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-09-04 14:15:32 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-09-04 14:15:32 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-09-04 14:15:32 ----A---- C:\Windows\system32\tsgqec.dll
2015-09-04 14:11:18 ----A---- C:\Windows\system32\generaltel.dll
2015-09-04 14:11:18 ----A---- C:\Windows\system32\devinv.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\invagent.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\appraiser.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\aepic.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\aeinv.dll
2015-09-04 14:11:17 ----A---- C:\Windows\system32\acmigration.dll
2015-09-04 14:11:16 ----A---- C:\Windows\system32\aepdu.dll
2015-09-04 14:11:15 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-09-04 14:11:01 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-09-04 14:11:01 ----A---- C:\Windows\system32\rdpcorets.dll
2015-09-04 14:10:57 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-09-04 14:10:57 ----A---- C:\Windows\system32\dwmcore.dll
2015-09-04 14:10:56 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-09-04 14:10:56 ----A---- C:\Windows\system32\dwmapi.dll
2015-09-04 14:10:15 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-09-04 14:10:15 ----A---- C:\Windows\system32\cewmdm.dll
2015-09-04 13:56:27 ----A---- C:\Windows\system32\shell32.dll
2015-09-04 13:56:24 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-09-04 13:54:06 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-09-04 13:54:05 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-09-04 13:54:05 ----A---- C:\Windows\system32\wuauclt.exe
2015-09-04 13:54:05 ----A---- C:\Windows\system32\wuapp.exe
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wuwebv.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wups2.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wups.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wudriver.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wucltux.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wuapi.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-09-04 13:54:04 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-09-04 13:54:03 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-11 22:22:23 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe

======List of files/folders modified in the last 1 month======

2015-09-05 15:41:13 ----D---- C:\Program Files\trend micro
2015-09-05 15:39:20 ----A---- C:\Windows\SYSWOW64\log.txt
2015-09-05 15:37:42 ----D---- C:\Windows\Temp
2015-09-05 15:37:39 ----D---- C:\Windows\system32\Tasks
2015-09-05 15:37:30 ----D---- C:\Windows\system32\config
2015-09-05 15:35:00 ----D---- C:\Windows\Tasks
2015-09-05 15:35:00 ----D---- C:\Windows\SysWOW64
2015-09-05 15:35:00 ----D---- C:\Windows
2015-09-05 11:36:54 ----D---- C:\AdwCleaner
2015-09-05 09:32:29 ----D---- C:\Windows\SoftwareDistribution
2015-09-05 09:23:46 ----D---- C:\Windows\Minidump
2015-09-04 18:16:17 ----D---- C:\Windows\System32
2015-09-04 18:16:17 ----D---- C:\Windows\inf
2015-09-04 18:16:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-04 18:12:53 ----D---- C:\Windows\Prefetch
2015-09-04 16:05:19 ----D---- C:\Windows\Microsoft.NET
2015-09-04 16:04:37 ----RSD---- C:\Windows\assembly
2015-09-04 15:50:25 ----D---- C:\Windows\winsxs
2015-09-04 15:45:06 ----SD---- C:\Windows\system32\CompatTel
2015-09-04 15:45:05 ----D---- C:\Windows\system32\wbem
2015-09-04 15:45:05 ----D---- C:\Windows\system32\appraiser
2015-09-04 15:45:05 ----D---- C:\Windows\AppPatch
2015-09-04 15:45:04 ----D---- C:\Program Files\Windows Media Player
2015-09-04 15:45:04 ----D---- C:\Program Files (x86)\Windows Media Player
2015-09-04 15:45:03 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-09-04 15:45:03 ----D---- C:\Windows\system32\drivers
2015-09-04 15:45:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-09-04 15:45:02 ----D---- C:\Windows\system32\cs-CZ
2015-09-04 15:45:01 ----D---- C:\Program Files\Internet Explorer
2015-09-04 15:45:00 ----D---- C:\Windows\SYSWOW64\en-US
2015-09-04 15:44:58 ----D---- C:\Windows\system32\en-US
2015-09-04 15:44:58 ----D---- C:\Windows\PolicyDefinitions
2015-09-04 15:44:56 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-04 15:16:46 ----SHD---- C:\Windows\Installer
2015-09-04 15:16:46 ----SHD---- C:\Config.Msi
2015-09-04 15:12:01 ----D---- C:\Program Files\Microsoft Silverlight
2015-09-04 15:12:01 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-09-04 15:07:31 ----D---- C:\ProgramData\Microsoft Help
2015-09-04 14:44:49 ----A---- C:\Windows\win.ini
2015-09-04 14:42:10 ----D---- C:\Windows\system32\MRT
2015-09-04 14:29:35 ----D---- C:\Windows\debug
2015-09-04 14:28:12 ----SHD---- C:\System Volume Information
2015-09-04 14:16:25 ----D---- C:\Windows\system32\catroot2
2015-09-03 22:50:37 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2015-09-02 15:49:42 ----D---- C:\Windows\system32\NDF
2015-08-30 15:19:28 ----D---- C:\Program Files (x86)\Battle.net
2015-08-28 17:05:55 ----RD---- C:\Program Files (x86)
2015-08-22 08:29:46 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2015-08-22 08:29:34 ----D---- C:\Windows\Logs
2015-08-13 19:41:52 ----D---- C:\Users\asus\AppData\Roaming\Skype
2015-08-11 22:22:51 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-03-04 280376]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-20 386680]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-20 283064]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-10-08 127760]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2014-06-14 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2014-06-14 43680]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 124568]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2011-09-20 16768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-09-27 10207232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-09-27 317952]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-08-02 129000]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-08-02 391144]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-04 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-09-30 30368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-18 3849304]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-03-18 99288]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-03-18 331992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 888536]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-21 1448496]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-09-30 36000]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2011-03-13 51872]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-09-30 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-09-30 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-09-30 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-09-30 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-09-30 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-09-30 519328]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-10-19 80384]
S3 btmaudio;Intel Bluetooth Audio Service; C:\Windows\system32\drivers\btmaud.sys []
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 esgiguard;esgiguard; C:\Windows\system32\drivers\esgiguard.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 ptun0901;TAP Adapter V9 for Private Tunnel; C:\Windows\system32\DRIVERS\ptun0901.sys [2014-08-08 27136]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 172104]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-09-27 204288]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-09-09 92800]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-04-30 23816]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-10-31 76152]
R2 postgresql-x64-9.0;postgresql-x64-9.0 - PostgreSQL Server 9.0; C:\Program Files\PostgreSQL\9.0\bin\pg_ctl.exe [2014-10-20 110592]
R2 postgresql-x64-9.3;postgresql-x64-9.3 - PostgreSQL Server 9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [2014-10-20 89088]
R2 TeamViewer;TeamViewer 10; D:\TeamViewer\TeamViewer_Service.exe [2015-07-29 5613328]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2015-04-30 366544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-11 269000]
S3 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -m=rb -dt=60000 []
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S3 SystemExplorerHelpService;System Explorer Service; D:\System Explorer\service\SystemExplorerService64.exe [2014-08-13 821096]
S3 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe []
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

[Rudy]

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

[Verdi]

Zatím to vypadá dobře. Ale jak říkám, dělá si to kdy chce, takže ho budu tak 2 dny sledovat a dám vědět. Zatím díky

[Rudy]

OK, nechám to tu otevřené. Zatím není zač!

[Verdi]

Aaa pardon uplne jsem zapomnel. Toto tema muzete smazat. Diky za pomoc

[Rudy]

Rádo se stalo!