Klávesnice,chrome,virus

[jakuubmartinek]

Dobrý den,

v poslední době skoro nemůžu psát žádný delší text, jelikož klávesnice si dělá co chce, přeskakuje z řádku na řádek nebo se kurzor najednou objeví uprostřed věty... moc mě to zdržuje. Nemůže to být vir?

Taky jsem byl zvyklý na používání prohlížeče chrome, ale ten mi jde špatně, ted mám mozillu a je lepší. Nod 32 mi odstranil 99 virů ale obávám se, že problém není vyřešen.

Děkuji za radu.

[jakuubmartinek]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Asus at 2015-09-08 11:00:32
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 35 GB (37%) free of 96 GB
Total RAM: 3695 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:00:43, on 8.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\trend micro\Asus.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://gosearch.me/?u=53f39435d67718a9 ... 1439456783
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8118
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O20 - AppInit_DLLs:
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Privoxy (PrivoxyService) (PrivoxyService) - The Privoxy team - www.privoxy.org - C:\Program Files (x86)\Alfasistem Memory\privoxy.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10356 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
/QuitInfo:0000000000000220;0000000000000224; /AddRef;
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1252
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"taskhost.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe"
taskeng.exe {5DC39A9D-62A5-43DF-BD3F-E243144D5BAF}
/QuitInfo:00000000000006C0;00000000000006C4; /AddRef;
/QuitInfo:00000000000006B0;00000000000006B4;
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
/loadhooks /Parent:0000000000000BB4
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe"
taskeng.exe {B55C3A18-B50D-4741-8BC5-9564C68C3CB2}
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
ATKOSD.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
KBFiltr.exe
WDC.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a22712d9-0c8e-46c8-88e1-75b0e7402548 -SystemEventPortName:HostProcess-147e494f-3dfe-4ba7-b1f3-f0f6f106cd4e -IoCancelEventPortName:HostProcess-b8085807-bcc7-4e10-988b-0599f680bcb6 -NonStateChangingEventPortName:HostProcess-a924695f-64df-4c20-8954-c62c88aae789 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a3bf8c90-f635-4c37-b9ca-dab6b819f6ee -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE" /e
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\splwow64.exe 8192
"C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE" /n /dde

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\Asus\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Bidaily Synchronize Task[973b].job - c:\programdata\{3dbc0d12-4aa9-e736-3dbc-c0d124aa3449}\brazzers classic - doctor adventures - night in room - kendall brooks - justice young mkv.exe --startup=1 --single

=========Mozilla firefox=========

ProfilePath - C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\c1cn9qwj.default

prefs.js - "browser.startup.homepage" - "seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll


C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\c1cn9qwj.default\extensions\
firefox@helper

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2011-06-08 81024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-08-19 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-19 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2011-06-08 69760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-19 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-19 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-01-28 5595848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-07-03 3673184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ACMON]
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-02-22 102568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-04-24 12480616]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2012-03-06 3331312]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-02-16 322176]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2011-10-25 174720]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2012-02-03 2321072]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08 334896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-01 22:51:33 ----A---- C:\Windows\system32\wksprt.exe
2015-09-01 22:51:31 ----A---- C:\Windows\system32\mstscax.dll
2015-09-01 22:51:29 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-09-01 22:51:27 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-09-01 22:51:27 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-09-01 22:51:26 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-09-01 22:51:26 ----A---- C:\Windows\system32\tsgqec.dll
2015-09-01 22:50:17 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-09-01 22:21:16 ----A---- C:\Users\Asus\AppData\Roaming\28B5.tmp
2015-08-31 22:41:10 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-08-31 22:41:05 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-08-31 22:41:05 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-08-31 22:41:05 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2015-08-31 22:41:04 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2015-08-31 22:41:04 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2015-08-31 22:41:04 ----A---- C:\Windows\system32\wksprtPS.dll
2015-08-31 22:41:03 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-08-31 22:41:03 ----A---- C:\Windows\system32\mstsc.exe
2015-08-31 22:41:03 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2015-08-31 22:14:28 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-08-31 22:14:28 ----A---- C:\Windows\system32\tzres.dll
2015-08-31 22:13:50 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-08-31 22:13:50 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-08-31 22:13:50 ----A---- C:\Windows\system32\dwmcore.dll
2015-08-31 22:13:50 ----A---- C:\Windows\system32\dwmapi.dll
2015-08-31 22:06:49 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-08-31 22:06:49 ----A---- C:\Windows\system32\TSpkg.dll
2015-08-31 22:06:46 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-31 22:06:46 ----A---- C:\Windows\system32\msaudite.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-31 22:06:44 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-31 22:06:41 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-08-31 22:06:41 ----A---- C:\Windows\system32\msobjs.dll
2015-08-31 22:06:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-31 22:06:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-31 22:06:37 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-31 22:06:37 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-31 22:06:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-31 22:06:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-31 22:06:34 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-08-31 22:06:33 ----A---- C:\Windows\system32\wdigest.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-31 22:06:32 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-31 22:06:32 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-31 22:06:32 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-08-31 22:06:32 ----A---- C:\Windows\system32\apisetschema.dll
2015-08-31 22:06:31 ----A---- C:\Windows\system32\msv1_0.dll
2015-08-31 22:06:27 ----A---- C:\Windows\system32\schannel.dll
2015-08-31 22:06:25 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-08-31 22:06:25 ----A---- C:\Windows\system32\cryptbase.dll
2015-08-31 22:06:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-08-31 22:06:23 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-08-31 22:06:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-31 22:06:23 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-08-31 22:06:23 ----A---- C:\Windows\system32\lsass.exe
2015-08-31 22:06:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-31 22:06:22 ----A---- C:\Windows\system32\winsrv.dll
2015-08-31 22:06:22 ----A---- C:\Windows\system32\sspisrv.dll
2015-08-31 22:06:22 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-31 22:06:22 ----A---- C:\Windows\system32\conhost.exe
2015-08-31 22:06:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-31 22:06:21 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-08-31 22:06:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-31 22:06:21 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-08-31 22:06:21 ----A---- C:\Windows\system32\ncrypt.dll
2015-08-31 22:06:21 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-31 22:06:21 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-31 22:06:21 ----A---- C:\Windows\system32\auditpol.exe
2015-08-31 22:06:20 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-08-31 22:06:20 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-08-31 22:06:20 ----A---- C:\Windows\system32\UtcResources.dll
2015-08-31 22:06:20 ----A---- C:\Windows\system32\tdh.dll
2015-08-31 22:06:20 ----A---- C:\Windows\system32\KernelBase.dll
2015-08-31 22:06:20 ----A---- C:\Windows\system32\diagtrack.dll
2015-08-31 22:06:19 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-08-31 22:06:19 ----A---- C:\Windows\system32\srclient.dll
2015-08-31 22:06:19 ----A---- C:\Windows\system32\rstrui.exe
2015-08-31 22:06:19 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-08-31 22:06:19 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-08-31 22:06:19 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-08-31 22:06:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-08-31 22:06:18 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-08-31 22:06:18 ----A---- C:\Windows\system32\srcore.dll
2015-08-31 22:06:17 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-31 22:06:17 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-08-31 22:06:17 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-31 22:06:17 ----A---- C:\Windows\system32\sspicli.dll
2015-08-31 22:06:17 ----A---- C:\Windows\system32\secur32.dll
2015-08-31 22:06:17 ----A---- C:\Windows\system32\rpcrt4.dll
2015-08-31 22:06:17 ----A---- C:\Windows\system32\credssp.dll
2015-08-31 22:06:16 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-31 22:06:16 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-08-31 22:06:16 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-31 22:06:16 ----A---- C:\Windows\system32\kerberos.dll
2015-08-31 22:06:16 ----A---- C:\Windows\system32\advapi32.dll
2015-08-31 22:06:16 ----A---- C:\Windows\system32\adtschema.dll
2015-08-31 22:06:15 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-31 22:06:15 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-31 22:06:14 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-08-31 22:06:14 ----A---- C:\Windows\system32\wow64win.dll
2015-08-31 22:06:14 ----A---- C:\Windows\system32\wow64.dll
2015-08-31 22:06:14 ----A---- C:\Windows\system32\smss.exe
2015-08-31 22:06:14 ----A---- C:\Windows\system32\ntdll.dll
2015-08-31 22:06:14 ----A---- C:\Windows\system32\kernel32.dll
2015-08-31 22:06:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-31 22:06:12 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-08-31 22:06:11 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-08-31 22:05:23 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-08-31 22:05:23 ----A---- C:\Windows\system32\consent.exe
2015-08-31 22:05:23 ----A---- C:\Windows\system32\authui.dll
2015-08-31 22:05:23 ----A---- C:\Windows\system32\appinfo.dll
2015-08-31 21:27:18 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-31 21:27:17 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-31 21:26:41 ----A---- C:\Windows\system32\mshtml.dll
2015-08-31 21:26:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-20 10:09:32 ----A---- C:\Windows\system32\sysmain.dll
2015-08-20 10:09:30 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-20 10:09:25 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-20 10:07:26 ----A---- C:\Windows\system32\basesrv.dll
2015-08-20 10:00:50 ----A---- C:\Windows\system32\generaltel.dll
2015-08-20 10:00:49 ----A---- C:\Windows\system32\invagent.dll
2015-08-20 10:00:49 ----A---- C:\Windows\system32\devinv.dll
2015-08-20 10:00:49 ----A---- C:\Windows\system32\appraiser.dll
2015-08-20 10:00:49 ----A---- C:\Windows\system32\aeinv.dll
2015-08-20 10:00:49 ----A---- C:\Windows\system32\acmigration.dll
2015-08-20 10:00:46 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-20 10:00:46 ----A---- C:\Windows\system32\aepdu.dll
2015-08-20 09:34:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-20 09:34:39 ----A---- C:\Windows\system32\iertutil.dll
2015-08-20 09:34:38 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-20 09:34:36 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-20 09:34:36 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-20 09:34:36 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-20 09:34:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-20 09:34:31 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-20 09:34:31 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-20 09:34:31 ----A---- C:\Windows\system32\iernonce.dll
2015-08-20 09:34:31 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-20 09:34:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-20 09:34:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-20 09:34:29 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-20 09:34:29 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-20 09:34:29 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-20 09:34:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-20 09:34:21 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-20 09:34:21 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-20 09:34:20 ----A---- C:\Windows\system32\urlmon.dll
2015-08-20 09:34:18 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-20 09:34:18 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-20 09:34:17 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-20 09:34:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-20 09:34:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-20 09:34:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-20 09:34:15 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-20 09:34:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-20 09:34:15 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-20 09:34:15 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-20 09:34:13 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-20 09:34:11 ----A---- C:\Windows\system32\iesetup.dll
2015-08-20 09:34:10 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-20 09:34:00 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-08-20 09:34:00 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-20 09:34:00 ----A---- C:\Windows\system32\vbscript.dll
2015-08-20 09:33:58 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-20 09:33:58 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-20 09:33:58 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-20 09:33:57 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-20 09:33:57 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-20 09:33:53 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-20 09:33:52 ----A---- C:\Windows\system32\ieui.dll
2015-08-20 09:33:51 ----A---- C:\Windows\system32\ieframe.dll
2015-08-20 09:33:47 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-20 09:33:46 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-08-20 09:33:45 ----A---- C:\Windows\system32\jscript.dll
2015-08-20 09:33:44 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-20 09:33:43 ----A---- C:\Windows\system32\jscript9.dll
2015-08-20 09:33:41 ----A---- C:\Windows\system32\wininet.dll
2015-08-20 09:33:37 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-20 09:33:36 ----A---- C:\Windows\system32\msrating.dll
2015-08-20 09:32:59 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-20 09:32:58 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-20 09:32:58 ----A---- C:\Windows\system32\wucltux.dll
2015-08-20 09:32:57 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-20 09:32:57 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-20 09:32:57 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-20 09:32:57 ----A---- C:\Windows\system32\wuapi.dll
2015-08-20 09:32:56 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-20 09:32:56 ----A---- C:\Windows\system32\wups2.dll
2015-08-20 09:32:56 ----A---- C:\Windows\system32\wudriver.dll
2015-08-20 09:32:56 ----A---- C:\Windows\system32\wuapp.exe
2015-08-20 09:32:56 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-20 09:32:55 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-20 09:32:55 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-20 09:32:55 ----A---- C:\Windows\system32\wups.dll
2015-08-20 09:32:55 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-20 00:26:03 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-20 00:26:03 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-20 00:26:02 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-20 00:26:02 ----A---- C:\Windows\system32\davclnt.dll
2015-08-20 00:25:55 ----A---- C:\Windows\system32\msxml3.dll
2015-08-20 00:25:53 ----A---- C:\Windows\system32\msxml6.dll
2015-08-20 00:25:52 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-20 00:25:52 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-20 00:25:50 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-08-20 00:25:50 ----A---- C:\Windows\system32\msxml6r.dll
2015-08-20 00:25:49 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-08-20 00:25:49 ----A---- C:\Windows\system32\msxml3r.dll
2015-08-20 00:25:35 ----A---- C:\Windows\system32\FntCache.dll
2015-08-20 00:25:34 ----A---- C:\Windows\system32\DWrite.dll
2015-08-20 00:25:32 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-20 00:25:30 ----A---- C:\Windows\system32\win32k.sys
2015-08-20 00:25:30 ----A---- C:\Windows\system32\atmfd.dll
2015-08-20 00:25:27 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-08-20 00:25:14 ----A---- C:\Windows\system32\lpk.dll
2015-08-20 00:25:14 ----A---- C:\Windows\system32\d3d10warp.dll
2015-08-20 00:25:13 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-08-20 00:25:11 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-08-20 00:25:11 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-08-20 00:25:11 ----A---- C:\Windows\system32\dciman32.dll
2015-08-20 00:25:11 ----A---- C:\Windows\system32\atmlib.dll
2015-08-20 00:25:10 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-08-20 00:25:10 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-08-20 00:25:10 ----A---- C:\Windows\system32\fontsub.dll
2015-08-20 00:24:51 ----A---- C:\Windows\system32\notepad.exe
2015-08-20 00:24:51 ----A---- C:\Windows\notepad.exe
2015-08-20 00:24:50 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-20 00:24:38 ----A---- C:\Windows\system32\shell32.dll
2015-08-20 00:24:32 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-08-19 23:31:52 ----A---- C:\Windows\SYSWOW64\RENFF9E.tmp
2015-08-19 23:29:55 ----D---- C:\Users\Asus\AppData\Roaming\Mozilla
2015-08-19 23:28:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-19 23:28:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-19 23:27:28 ----D---- C:\ProgramData\Sun
2015-08-13 11:31:28 ----D---- C:\Users\Asus\AppData\Roaming\uTorrent
2015-08-11 19:16:30 ----D---- C:\Users\Asus\AppData\Roaming\Mighty Menager

======List of files/folders modified in the last 1 month======

2015-09-08 11:00:39 ----D---- C:\Program Files\trend micro
2015-09-08 11:00:38 ----D---- C:\Windows\Temp
2015-09-08 09:29:25 ----D---- C:\Windows\Microsoft.NET
2015-09-08 09:11:41 ----SHD---- C:\System Volume Information
2015-09-08 06:56:43 ----D---- C:\Windows\system32\config
2015-09-04 12:57:52 ----HD---- C:\$Windows.~BT
2015-09-04 12:17:32 ----D---- C:\Windows\Panther
2015-09-04 12:08:28 ----D---- C:\Windows\System32
2015-09-04 12:08:28 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-02 20:57:47 ----D---- C:\Windows\inf
2015-09-02 20:56:50 ----D---- C:\Windows
2015-09-02 12:52:00 ----D---- C:\Windows\rescache
2015-09-02 10:54:36 ----D---- C:\Program Files (x86)\Maintenance Security
2015-09-02 10:43:06 ----D---- C:\Windows\SysWOW64
2015-09-02 10:43:05 ----D---- C:\Windows\winsxs
2015-09-02 10:42:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-09-02 10:42:52 ----D---- C:\Windows\system32\cs-CZ
2015-09-02 10:39:11 ----D---- C:\Program Files (x86)\Alfasistem Memory
2015-09-02 09:53:31 ----RSD---- C:\Windows\assembly
2015-09-01 22:21:42 ----D---- C:\Windows\system32\Tasks
2015-08-31 23:00:56 ----D---- C:\Windows\Tasks
2015-08-31 23:00:53 ----SHD---- C:\Windows\Installer
2015-08-31 22:59:23 ----D---- C:\Program Files (x86)\Google
2015-08-31 22:48:27 ----D---- C:\Windows\system32\catroot2
2015-08-31 22:44:08 ----D---- C:\Windows\SYSWOW64\wbem
2015-08-31 22:44:08 ----D---- C:\Windows\system32\wbem
2015-08-31 22:44:08 ----D---- C:\Windows\system32\drivers\en-US
2015-08-31 22:44:08 ----D---- C:\Windows\system32\drivers
2015-08-31 22:44:01 ----D---- C:\Windows\AppPatch
2015-08-31 22:43:58 ----D---- C:\Windows\system32\DriverStore
2015-08-31 21:40:09 ----D---- C:\Users\Asus\AppData\Roaming\Winamp
2015-08-31 21:39:23 ----D---- C:\Windows\debug
2015-08-31 21:02:53 ----SD---- C:\Windows\system32\CompatTel
2015-08-31 21:02:51 ----D---- C:\Windows\system32\appraiser
2015-08-31 21:02:48 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-31 21:02:40 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-31 21:02:40 ----D---- C:\Program Files\Internet Explorer
2015-08-31 21:02:39 ----D---- C:\Windows\system32\en-US
2015-08-31 21:02:37 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-31 20:55:54 ----D---- C:\ProgramData\Microsoft Help
2015-08-31 20:48:38 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-31 20:48:38 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-31 20:25:25 ----D---- C:\Windows\system32\MRT
2015-08-31 20:06:01 ----A---- C:\Windows\system32\MRT.exe
2015-08-31 18:14:07 ----D---- C:\Windows\Prefetch
2015-08-20 09:25:51 ----A---- C:\Windows\system32\ServiceFilter.ini
2015-08-19 23:34:02 ----D---- C:\ProgramData\Oracle
2015-08-19 23:33:15 ----D---- C:\Program Files (x86)\Java
2015-08-19 23:30:02 ----D---- C:\Program Files\Java
2015-08-19 23:28:47 ----RD---- C:\Program Files (x86)
2015-08-19 23:27:28 ----HD---- C:\ProgramData
2015-08-19 23:27:25 ----D---- C:\Program Files (x86)\Common Files
2015-08-19 23:13:54 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2015-08-13 11:04:59 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-08-12 283064]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2015-03-10 246000]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2015-03-10 169792]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2015-03-10 159480]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2012-02-29 17152]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2012-03-30 105088]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-03-22 10721280]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-03-22 327168]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2012-03-30 223872]
R3 AsusVBus;AsusVBus; C:\Windows\system32\DRIVERS\AsusVBus.sys [2011-12-22 35968]
R3 AsusVTouch;AsusVTouch; C:\Windows\system32\DRIVERS\AsusVTouch.sys [2011-11-08 16512]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-04-24 4028520]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-04-09 2430224]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-20 109056]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2011-12-13 56448]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2012-03-06 80384]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-14 48488]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUSB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-03-22 235520]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-03-22 361984]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2011-11-22 80512]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [2012-04-13 277120]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-22 96896]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-01-28 1349576]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 2292096]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 PrivoxyService;Privoxy (PrivoxyService); C:\Program Files (x86)\Alfasistem Memory\privoxy.exe [2015-08-31 371200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-13 269000]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-13 149160]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-05-21 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------

[Márty84]

Zdravim

Vyzkousejte, jestli je problem s klavesnici i v nouzovem rezimu.

Pokud mate moznost, vyzkousejte jinou klavesnici.

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[jakuubmartinek]

Zatím posílám ADW:

# AdwCleaner v5.006 - Logfile created 08/09/2015 at 11:26:36
# Updated 06/09/2015 by Xplode
# Database : 2015-09-07.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Asus - ASUS-PC
# Running from : C:\Users\Asus\Desktop\adwcleaner_5.006.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : PrivoxyService

***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\18168319005699900066

***** [ Files ] *****

[-] File Deleted : C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_view.contextualyield.com_0.localstorage-journal

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : Malware Cleaner

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2F137995-4D26-44AD-9C4E-91055090A817}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKLM\SOFTWARE\SecureWebChannel
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
[-] Data Restored : HKU\S-1-5-21-1392716903-311306330-1453021388-1001\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
[-] Data Restored : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-1392716903-311306330-1453021388-1001\Software\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
[-] Data Restored : HKU\S-1-5-21-1392716903-311306330-1453021388-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [2565 bytes] ##########

[jakuubmartinek]

Trvalo to trochu délle, zasílám i log druhý:

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 8.9.2015
Čas skenování: 12:04
Protokol: log.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.09.08.02
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Asus

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 517906
Uplynulý čas: 3 hod, 49 min, 31 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 4
PUP.Optional.MultiPlug, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Bidaily Synchronize Task[973b], , [650d0d20c3c848ee80afb1f0a85c6a96],
PUP.Optional.MaintenanceSecurity.PrxySvrRST, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Maintenance Security Schedualer, , [2f4356d73457a294660ec1384ab833cd],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, , [dd9563ca3b50b87e7c93432d659fe21e],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, , [f77bac816427d6602fe07cf4f70d7e82],

Hodnoty registru: 4
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [dd9563ca3b50b87e7c93432d659fe21e]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [f77bac816427d6602fe07cf4f70d7e82]
PUP.Optional.GoSearchMe, HKU\S-1-5-21-1392716903-311306330-1453021388-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\ABOUTURLS|Tabs, https://gosearch.me/?u=53f39435d67718a9 ... 1439456783, , [89e960cda7e449ed6266b9d9a75da35d]
PUM.Bad.Proxy, HKU\S-1-5-21-1392716903-311306330-1453021388-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, 127.0.0.1:8118, , [cda5cb629eedb581eecf18533dc7ef11]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 1
PUP.Optional.Privoxy.PrxySvrRST, C:\Program Files (x86)\Alfasistem Memory, , [f87a57d6602bfb3bbb3801f741c18f71],

Soubory: 10
RiskWare.Tool.CK, C:\Users\Asus\Desktop\Realitka\MS Office 2007\Microsoft.Office.2007.Enterprise.Keygen.Only-MiCROSOFT.rar, , [1d55d05da2e946f0f3de37d9837f0bf5],
PUP.Optional.MaintenanceSecurity.PrxySvrRST, C:\Windows\System32\Tasks\Maintenance Security Schedualer, , [b8bafa334c3f53e300704faaf40e0af6],
PUP.Optional.MultiPlug, C:\Windows\System32\Tasks\Bidaily Synchronize Task[973b], , [046e51dc2e5da29474aa267b699b8878],
PUP.Optional.MultiPlug, C:\Windows\Tasks\Bidaily Synchronize Task[973b].job, , [7ff354d99bf070c640e6534ee51fa25e],
PUP.Optional.Privoxy.PrxySvrRST, C:\Program Files (x86)\Alfasistem Memory\checkproxy.exe, , [f87a57d6602bfb3bbb3801f741c18f71],
PUP.Optional.Privoxy.PrxySvrRST, C:\Program Files (x86)\Alfasistem Memory\config.txt, , [f87a57d6602bfb3bbb3801f741c18f71],
PUP.Optional.Privoxy.PrxySvrRST, C:\Program Files (x86)\Alfasistem Memory\default.action, , [f87a57d6602bfb3bbb3801f741c18f71],
PUP.Optional.Privoxy.PrxySvrRST, C:\Program Files (x86)\Alfasistem Memory\mgwz.dll, , [f87a57d6602bfb3bbb3801f741c18f71],
PUP.Optional.Privoxy.PrxySvrRST, C:\Program Files (x86)\Alfasistem Memory\privoxy.exe, , [f87a57d6602bfb3bbb3801f741c18f71],
PUP.Optional.Privoxy.PrxySvrRST, C:\Program Files (x86)\Alfasistem Memory\privoxy.log, , [f87a57d6602bfb3bbb3801f741c18f71],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Márty84]

Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc test s MBAM zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.




7.11. pro neaktivitu http://forum.viry.cz/viewtopic.php?f=12&t=123975