Hezký den, měl jsem problém s pomalým notebookem a díky Rudy se mi ho povedlo zrychlit. Mohl bych ale ještě poprosit o kontrolu? Děkuji
Logfile of random's system information tool 1.08 (written by random/random)
Run by Lou at 2014-01-04 12:36:17
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 85 GB (69%) free of 122 GB
Total RAM: 1953 MB (36% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:36:24, on 4.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Lou.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.yahoo.com?fr=fp-comodo
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: (no name) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: HControl.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file)
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - (no file)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TiMiniService - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11029 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {15037869-6D31-4355-AD93-D93320C857D4}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
taskeng.exe {B1C99C82-9710-4C56-AE6C-C3520E01D238}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files\Trend Micro\Titanium\TiMiniService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe"
\??\C:\Windows\system32\conhost.exe "-1504569263-7601308481423356273-15090670351124308320-2066567820-162262746665335779
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
WLIDSvcM.exe 2660
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\alg.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
ATKOSD.exe
KBFiltr.exe
WDC.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\PrintIsolationHost.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3948.0.1636974862\468375001" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.3347 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="3948.1.1868699106\1072025322" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="3948.3.948283575\1678071795" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="3948.4.654366643\1709219336" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="3948.5.1393949255\604943892" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="3948.6.512988173\1802892983" /prefetch:673131151
"D:\Stažené soubory\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-files.com Fixer_MONTHLY.job
C:\Windows\tasks\DLL-files.com Fixer_UPDATES.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll [2010-09-17 235344]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll [2010-09-17 264528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll [2010-09-17 185680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-08-02 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-25 1138536]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll [2010-09-17 234832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{95B7759C-8C7F-4BF1-B163-73684A933233}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-25 1138536]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2010-10-12 192520]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-08-16 2277480]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-05 2785064]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-11-07 171992]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-11-07 399832]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-11-07 442328]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\egui]
C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDCtrl]
C:\Program Files\Elantech\ETDCtrl.exe [2010-12-31 2587944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Lou\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1]
C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe / /PROMPT /CMPID=ROC_JULY_P1 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Trend Micro Titanium]
C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe [2010-09-17 322384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
C:\Program Files (x86)\AVG Secure Search\vprot.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Lou^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Rainmeter.lnk]
C:\PROGRA~1\RAINME~1\RAINME~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-25 3764024]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FancyStart daemon.lnk - C:\Windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe
C:\Users\Lou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
HControl.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-11-07 442880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableStartupSound"=1
"DisplayLastLogonInfo"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open -
======List of files/folders created in the last 1 months======
2014-01-04 12:36:17 ----D---- C:\rsit
2014-01-04 10:48:22 ----D---- C:\ProgramData\IObit
2014-01-04 10:48:20 ----D---- C:\Program Files (x86)\IObit
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-01-03 23:46:16 ----D---- C:\Program Files\AdTrustMedia
2014-01-03 23:46:15 ----D---- C:\ProgramData\Adtrustmedia
2014-01-03 20:38:29 ----D---- C:\FRST
2014-01-03 19:55:55 ----D---- C:\Users\Lou\AppData\Roaming\SUPERAntiSpyware.com
2013-12-25 09:15:28 ----D---- C:\Users\Lou\AppData\Roaming\Samsung
2013-12-25 09:14:37 ----D---- C:\ProgramData\Samsung
2013-12-25 09:14:37 ----D---- C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller
2013-12-25 09:14:36 ----D---- C:\Program Files (x86)\SamsungPrinterLiveUpdate
2013-12-25 09:14:16 ----N---- C:\Windows\TotalUninstaller.exe
2013-12-25 09:14:11 ----A---- C:\Windows\system32\ssj1mlm.dll
2013-12-25 09:14:11 ----A---- C:\Windows\system32\SBuySupplies.exe
2013-12-25 09:14:06 ----A---- C:\Windows\system32\ssj1mci.exe
2013-12-25 09:14:05 ----A---- C:\Windows\system32\ssj1mci.dll
2013-12-25 09:13:16 ----D---- C:\Program Files (x86)\Samsung
2013-12-25 08:56:23 ----A---- C:\Windows\system32\drivers\aswstm.sys
2013-12-15 11:59:36 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-15 11:59:35 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-15 11:59:34 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-15 11:59:31 ----A---- C:\Windows\system32\wmp.dll
2013-12-15 11:44:17 ----D---- C:\Windows\Migration
2013-12-15 11:07:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-12-15 11:07:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-12-15 11:07:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\wksprtPS.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\tsgqec.dll
2013-12-15 11:07:31 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-12-15 11:07:31 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-12-15 11:07:31 ----A---- C:\Windows\system32\rdpudd.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\aaclient.dll
2013-12-15 11:07:30 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-12-15 11:07:30 ----A---- C:\Windows\system32\wksprt.exe
2013-12-15 11:07:30 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-12-15 11:07:30 ----A---- C:\Windows\system32\mstsc.exe
2013-12-15 11:07:29 ----A---- C:\Windows\system32\rdpcorets.dll
2013-12-15 11:07:28 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-12-15 11:07:27 ----A---- C:\Windows\system32\mstscax.dll
2013-12-15 11:00:07 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-15 11:00:06 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-12-15 11:00:06 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-12-15 11:00:04 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-15 11:00:04 ----A---- C:\Windows\system32\ieui.dll
2013-12-15 11:00:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-12-15 11:00:03 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-15 11:00:02 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-15 11:00:01 ----A---- C:\Windows\system32\wininet.dll
2013-12-15 11:00:00 ----A---- C:\Windows\SYSWOW64\url.dll
2013-12-15 11:00:00 ----A---- C:\Windows\system32\url.dll
2013-12-15 10:59:59 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-15 10:59:59 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-15 10:59:57 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-15 10:59:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-15 10:59:55 ----A---- C:\Windows\system32\urlmon.dll
2013-12-15 10:59:54 ----A---- C:\Windows\system32\iertutil.dll
2013-12-15 10:59:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-15 10:59:52 ----A---- C:\Windows\system32\jscript9.dll
2013-12-15 10:59:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-15 10:59:51 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-15 10:59:51 ----A---- C:\Windows\system32\vbscript.dll
2013-12-15 10:59:51 ----A---- C:\Windows\system32\jscript.dll
2013-12-15 10:59:49 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-15 10:59:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-15 10:59:40 ----A---- C:\Windows\system32\mshtml.dll
2013-12-15 10:59:36 ----A---- C:\Windows\system32\ieframe.dll
2013-12-15 10:59:34 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-15 10:29:22 ----D---- C:\Windows\system32\MRT
2013-12-15 10:21:08 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-12-15 10:21:08 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-12-15 10:21:07 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-12-15 10:21:07 ----A---- C:\Windows\system32\UIAnimation.dll
2013-12-15 10:21:04 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-15 10:21:04 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-15 10:20:57 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-12-15 10:20:57 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\d3d10warp.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\d3d10_1.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-15 10:20:56 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-12-15 10:20:55 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\dxgi.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\d3d10level9.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\d3d10core.dll
2013-12-15 10:20:54 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-12-15 10:20:53 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-12-15 10:20:53 ----A---- C:\Windows\system32\d3d10.dll
2013-12-15 10:20:52 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-12-15 10:20:52 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-12-15 10:20:52 ----A---- C:\Windows\system32\XpsPrint.dll
2013-12-15 10:20:52 ----A---- C:\Windows\system32\FntCache.dll
2013-12-15 10:20:51 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-12-15 10:20:51 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\DWrite.dll
2013-12-15 10:20:50 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-12-15 10:20:50 ----A---- C:\Windows\system32\d2d1.dll
2013-12-15 10:14:38 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-12-15 10:14:36 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-12-15 10:14:36 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-12-15 10:14:27 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-12-15 10:14:27 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\cryptsvc.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\cryptnet.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\crypt32.dll
2013-12-15 10:14:26 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-12-15 10:14:22 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-15 10:14:22 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-15 10:13:29 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-12-15 10:13:28 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-12-15 10:13:27 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-12-15 10:13:27 ----A---- C:\Windows\system32\tdh.dll
2013-12-15 10:13:27 ----A---- C:\Windows\system32\ntdll.dll
2013-12-15 10:13:27 ----A---- C:\Windows\system32\advapi32.dll
2013-12-15 10:13:26 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-12-15 10:13:26 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-12-15 10:13:26 ----A---- C:\Windows\system32\wow64.dll
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-12-15 10:13:24 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-12-15 10:13:24 ----A---- C:\Windows\SYSWOW64\user.exe
2013-12-15 10:13:16 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-12-15 10:13:16 ----A---- C:\Windows\system32\winsrv.dll
2013-12-15 10:13:16 ----A---- C:\Windows\system32\KernelBase.dll
2013-12-15 10:13:15 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\smss.exe
2013-12-15 10:13:15 ----A---- C:\Windows\system32\kernel32.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\csrsrv.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\conhost.exe
2013-12-15 10:13:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-15 10:13:14 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-12-15 10:13:14 ----A---- C:\Windows\system32\apisetschema.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-15 10:12:40 ----A---- C:\Windows\system32\consent.exe
2013-12-15 10:12:39 ----A---- C:\Windows\system32\appinfo.dll
2013-12-15 10:11:58 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-12-15 10:11:58 ----A---- C:\Windows\system32\certutil.exe
2013-12-15 10:11:57 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-12-15 10:11:57 ----A---- C:\Windows\system32\certenc.dll
2013-12-15 10:11:25 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-12-15 10:11:25 ----A---- C:\Windows\system32\d3d11.dll
2013-12-15 10:11:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\schannel.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\lsasrv.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\cng.sys
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\sspisrv.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\sspicli.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\secur32.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\ncrypt.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\lsass.exe
2013-12-15 10:11:19 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-12-15 10:11:18 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-12-15 10:11:18 ----A---- C:\Windows\system32\mswsock.dll
2013-12-15 10:11:11 ----A---- C:\Windows\system32\shell32.dll
2013-12-15 10:11:10 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-12-15 10:11:09 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-12-15 10:11:09 ----A---- C:\Windows\system32\shdocvw.dll
2013-12-15 10:11:00 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-12-15 10:11:00 ----A---- C:\Windows\system32\wintrust.dll
2013-12-15 10:10:24 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-12-15 10:10:24 ----A---- C:\Windows\system32\cryptdlg.dll
2013-12-15 10:10:11 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\credui.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\authui.dll
2013-12-15 10:10:10 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-12-15 10:10:10 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-12-15 10:09:40 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-15 10:09:40 ----A---- C:\Windows\system32\tzres.dll
2013-12-15 10:09:34 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-12-15 10:09:25 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-12-15 10:09:07 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-12-15 10:09:03 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-12-15 10:08:51 ----A---- C:\Windows\system32\msieftp.dll
2013-12-15 10:08:44 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-15 10:08:41 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-15 10:08:37 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-15 10:08:36 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-15 10:08:36 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-15 10:08:33 ----A---- C:\Windows\system32\comctl32.dll
2013-12-15 10:08:30 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-12-15 10:08:11 ----A---- C:\Windows\system32\wwansvc.dll
2013-12-15 10:08:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-12-15 10:08:10 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-12-15 10:08:09 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-12-15 10:08:09 ----A---- C:\Windows\system32\win32spl.dll
2013-12-15 10:08:09 ----A---- C:\Windows\system32\qedit.dll
2013-12-15 10:08:08 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-12-15 10:08:08 ----A---- C:\Windows\system32\WebClnt.dll
2013-12-15 10:08:06 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-12-15 10:08:06 ----A---- C:\Windows\system32\davclnt.dll
2013-12-15 10:08:05 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-12-15 10:08:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-12-15 10:08:03 ----A---- C:\Windows\system32\cscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\system32\wscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\system32\scrrun.dll
2013-12-15 10:08:01 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-15 10:08:01 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-15 10:08:00 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-12-15 10:08:00 ----A---- C:\Windows\system32\dciman32.dll
2013-12-15 10:08:00 ----A---- C:\Windows\system32\atmfd.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\lpk.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\fontsub.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\atmlib.dll
2013-12-15 10:07:58 ----A---- C:\Windows\system32\rpcrt4.dll
2013-12-15 10:07:57 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-12-15 10:07:52 ----A---- C:\Windows\system32\win32k.sys
2013-12-15 10:07:51 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-12-15 10:07:49 ----A---- C:\Windows\system32\drivers\afd.sys
2013-12-15 10:07:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-12-15 10:07:03 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-12-15 10:07:02 ----A---- C:\Windows\system32\gdi32.dll
2013-12-15 10:07:01 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-12-15 10:06:50 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-12-15 10:06:50 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\cdd.dll
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-12-15 09:54:16 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-12-15 09:54:15 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-12-15 09:54:15 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-12-15 09:54:15 ----A---- C:\Windows\system32\nshwfp.dll
2013-12-15 09:54:15 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-12-15 09:54:06 ----A---- C:\Windows\system32\scavengeui.dll
2013-12-08 00:52:39 ----D---- C:\Program Files (x86)\ASM104xUSB3
2013-12-07 22:14:40 ----D---- C:\Users\Lou\AppData\Roaming\Intel
2013-12-07 22:14:33 ----D---- C:\ProgramData\Roaming
2013-12-07 22:02:40 ----D---- C:\Program Files\Synaptics
2013-12-07 22:02:01 ----A---- C:\Windows\SYSWOW64\SynTPEnhPS.dll
2013-12-07 22:02:01 ----A---- C:\Windows\SYSWOW64\SynTPCOM.dll
2013-12-07 22:02:01 ----A---- C:\Windows\SYSWOW64\SynCtrl.dll
2013-12-07 22:02:01 ----A---- C:\Windows\SYSWOW64\SynCOM.dll
2013-12-07 22:02:01 ----A---- C:\Windows\system32\SynTPAPI.dll
2013-12-07 22:02:01 ----A---- C:\Windows\system32\SynCtrl.dll
2013-12-07 22:02:01 ----A---- C:\Windows\system32\SynCOM.dll
2013-12-07 22:02:01 ----A---- C:\Windows\system32\drivers\SynTP.sys
======List of files/folders modified in the last 1 months======
2014-01-04 12:36:24 ----D---- C:\Windows\Prefetch
2014-01-04 12:36:24 ----D---- C:\Program Files\Trend Micro
2014-01-04 12:36:21 ----D---- C:\Windows\Temp
2014-01-04 12:06:19 ----D---- C:\Windows\System32
2014-01-04 12:06:19 ----D---- C:\Windows\inf
2014-01-04 12:06:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-04 12:04:27 ----A---- C:\Windows\SYSWOW64\log.txt
2014-01-04 12:03:31 ----D---- C:\Windows\system32\config
2014-01-04 12:02:34 ----D---- C:\Windows\system32\Tasks
2014-01-04 12:02:19 ----HD---- C:\ASUS.DAT
2014-01-04 11:50:57 ----HD---- C:\ProgramData
2014-01-04 11:49:11 ----SHD---- C:\Config.Msi
2014-01-04 11:48:34 ----D---- C:\Windows\system32\catroot
2014-01-04 11:22:38 ----D---- C:\Windows\pss
2014-01-04 11:10:15 ----D---- C:\Program Files (x86)\Google
2014-01-04 11:10:02 ----RD---- C:\Program Files (x86)
2014-01-04 11:09:56 ----D---- C:\Program Files (x86)\Common Files
2014-01-04 11:07:04 ----D---- C:\Program Files (x86)\Adobe
2014-01-04 11:05:50 ----SHD---- C:\Windows\Installer
2014-01-04 11:05:18 ----SHD---- C:\System Volume Information
2014-01-04 11:04:40 ----D---- C:\Windows\system32\catroot2
2014-01-04 11:01:43 ----D---- C:\Windows
2014-01-04 11:01:23 ----RD---- C:\Program Files
2014-01-04 11:00:09 ----D---- C:\ProgramData\Intel
2014-01-04 11:00:05 ----D---- C:\Program Files\Common Files\Intel
2014-01-04 10:59:47 ----D---- C:\Windows\system32\DriverStore
2014-01-04 10:51:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-01-04 10:49:31 ----D---- C:\Program Files\Common Files
2014-01-04 00:32:35 ----D---- C:\Windows\winsxs
2014-01-04 00:22:57 ----D---- C:\Windows\system32\drivers
2014-01-04 00:19:01 ----D---- C:\Windows\SysWOW64
2014-01-03 23:54:04 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-01-03 23:53:58 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-01-03 22:05:03 ----D---- C:\Windows\Tasks
2014-01-03 22:05:03 ----D---- C:\Windows\system32\drivers\etc
2014-01-03 21:05:56 ----SD---- C:\ProgramData\Microsoft
2014-01-03 21:04:59 ----D---- C:\ProgramData\Adobe
2014-01-03 20:56:27 ----D---- C:\Windows\tracing
2014-01-03 20:28:23 ----D---- C:\ProgramData\Microsoft Help
2014-01-03 20:28:20 ----A---- C:\Windows\win.ini
2014-01-03 19:56:11 ----D---- C:\Windows\debug
2014-01-03 19:47:37 ----D---- C:\Program Files\CCleaner
2013-12-25 08:56:01 ----A---- C:\Windows\system32\aswBoot.exe
2013-12-22 14:58:10 ----D---- C:\Windows\rescache
2013-12-15 14:27:58 ----D---- C:\Windows\Microsoft.NET
2013-12-15 14:26:25 ----RSD---- C:\Windows\assembly
2013-12-15 13:12:12 ----D---- C:\Program Files\Windows Media Player
2013-12-15 13:08:32 ----D---- C:\Program Files\Microsoft Silverlight
2013-12-15 13:08:31 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-12-15 13:04:43 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-15 13:04:40 ----D---- C:\Windows\AppPatch
2013-12-15 13:04:39 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-15 13:04:39 ----D---- C:\Windows\system32\cs-CZ
2013-12-15 13:04:38 ----D---- C:\Program Files\Windows Defender
2013-12-15 13:04:38 ----D---- C:\Program Files (x86)\Windows Defender
2013-12-15 13:04:30 ----D---- C:\Windows\SYSWOW64\wbem
2013-12-15 13:04:30 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-15 13:04:30 ----D---- C:\Windows\PolicyDefinitions
2013-12-15 13:04:29 ----D---- C:\Windows\system32\wbem
2013-12-15 13:04:29 ----D---- C:\Windows\system32\en-US
2013-12-15 13:04:29 ----D---- C:\Windows\system32\drivers\en-US
2013-12-15 13:04:27 ----D---- C:\Windows\SYSWOW64\migration
2013-12-15 13:04:27 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-15 13:04:26 ----D---- C:\Windows\system32\migration
2013-12-15 13:04:26 ----D---- C:\Program Files\Internet Explorer
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\it-IT
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\es-ES
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\el-GR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\de-DE
2013-12-15 13:04:20 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-12-15 13:04:20 ----D---- C:\Windows\SYSWOW64\da-DK
2013-12-15 13:04:20 ----D---- C:\Windows\system32\zh-HK
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pt-PT
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pt-BR
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pl-PL
2013-12-15 13:04:20 ----D---- C:\Windows\system32\ko-KR
2013-12-15 13:04:20 ----D---- C:\Windows\system32\it-IT
2013-12-15 13:04:20 ----D---- C:\Windows\system32\hu-HU
2013-12-15 13:04:20 ----D---- C:\Windows\system32\el-GR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\zh-TW
2013-12-15 13:04:19 ----D---- C:\Windows\system32\zh-CN
2013-12-15 13:04:19 ----D---- C:\Windows\system32\tr-TR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\sv-SE
2013-12-15 13:04:19 ----D---- C:\Windows\system32\ru-RU
2013-12-15 13:04:19 ----D---- C:\Windows\system32\nl-NL
2013-12-15 13:04:19 ----D---- C:\Windows\system32\nb-NO
2013-12-15 13:04:19 ----D---- C:\Windows\system32\ja-JP
2013-12-15 13:04:19 ----D---- C:\Windows\system32\fr-FR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\fi-FI
2013-12-15 13:04:19 ----D---- C:\Windows\system32\es-ES
2013-12-15 13:04:19 ----D---- C:\Windows\system32\de-DE
2013-12-15 13:04:19 ----D---- C:\Windows\system32\da-DK
2013-12-15 13:04:17 ----D---- C:\Program Files\Windows Journal
2013-12-15 11:48:45 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-12-14 15:00:55 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-12-07 23:18:36 ----D---- C:\Windows\system32\wfp
2013-12-07 23:18:36 ----D---- C:\Windows\system32\NDF
2013-12-07 23:18:36 ----D---- C:\Windows\system32\drivers\UMDF
2013-12-07 23:18:35 ----D---- C:\Users\Lou\AppData\Roaming\vlc
2013-12-07 23:18:35 ----D---- C:\Users\Lou\AppData\Roaming\dvdcss
2013-12-07 23:18:35 ----D---- C:\ProgramData\P4G
2013-12-07 23:18:27 ----D---- C:\Windows\registration
2013-12-07 22:55:21 ----D---- C:\Program Files\P4G
2013-12-07 17:33:46 ----D---- C:\AsusVibeData
2013-12-07 14:24:06 ----D---- C:\Program Files (x86)\ASUS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-21 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-25 207904]
R0 AVGIDSEH;AVGIDSEH; C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 26704]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2011-09-13 37456]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-11-21 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-12-25 1034464]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-12-25 422216]
R1 ATKWMIACPIIO_;ATKWMIACPI Driver_; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2011-05-23 48992]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2011-10-07 283728]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2011-08-08 46672]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2011-07-11 375376]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2012-09-05 31080]
R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2010-09-17 105552]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-12-25 78648]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2012-02-15 11576]
R2 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2010-09-17 90704]
R2 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2010-09-17 144464]
R2 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2010-09-17 67664]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-08-02 36000]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-08-02 330912]
R3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-08-02 110240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-08-02 30368]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-08-02 167584]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-08-02 68256]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-08-02 280992]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-08-02 511136]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-11-07 5363200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-08-16 3056360]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-08-24 76912]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-05 1439792]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2013-12-25 79672]
S3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 120400]
S3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 29776]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-12-31 138024]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-02-15 52736]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 IObitUnlocker;IObitUnlocker; \??\C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2013-09-30 36568]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-01-25 379520]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-08-02 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-08-02 103584]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-25 50344]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe [2010-09-17 241488]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-04 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-14 257416]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-11-07 279000]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-04 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-26 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu
Zalman Z1
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Re: Prosím o kontrolu
Zdravim 
A proc jste nepokracoval s Rudym?
Bezi vam tam Avast, ale taky neco od Trend Micro. Jedno z toho je potreba odinstalovat. Nechal bych si Avast...
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
A proc jste nepokracoval s Rudym? Bezi vam tam Avast, ale taky neco od Trend Micro. Jedno z toho je potreba odinstalovat. Nechal bych si Avast... Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu
Díval jsem se do nainstalovaných programů a nic od Trend Micro tam nemám 
Popravdě jsem doteď nevěděl, že tam něco takového mám. Jak to mám teda odinstalovat?
# AdwCleaner v3.016 - Report created 04/01/2014 at 22:09:13
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Lou - STEVEN
# Running from : C:\Users\Lou\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\Askcom.xml
File Found : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\user.js
File Found : C:\Windows\System32\Tasks\Your File Updater
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
Folder Found C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Folder Found C:\Program Files (x86)\Common Files\Spigot
Folder Found C:\Program Files (x86)\Conduit
Folder Found C:\ProgramData\Partner
Folder Found C:\Users\Lou\AppData\Local\apn
Folder Found C:\Users\Lou\AppData\Local\AVG Secure Search
Folder Found C:\Users\Lou\AppData\Local\Conduit
Folder Found C:\Users\Lou\AppData\Local\Splashtop
Folder Found C:\Users\Lou\AppData\Local\TempDir
Folder Found C:\Users\Lou\AppData\LocalLow\AVG Secure Search
Folder Found C:\Users\Lou\AppData\LocalLow\Conduit
Folder Found C:\Users\Lou\AppData\LocalLow\Toolbar4
Folder Found C:\Users\Lou\AppData\Roaming\Babylon
Folder Found C:\Users\Lou\AppData\Roaming\dvdvideosoftiehelpers
Folder Found C:\Users\Lou\AppData\Roaming\yourfiledownloader
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\FLEXnet
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\YourFileDownloader
Key Found : [x64] HKCU\Software\AVG Secure Search
Key Found : [x64] HKCU\Software\FLEXnet
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\YourFileDownloader
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Found : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\speedupmypc
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mountainbike-challenge_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mountainbike-challenge_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_snow-transformation-pack_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_snow-transformation-pack_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\Software\systweak
Key Found : HKLM\Software\Uniblue
Key Found : HKLM\Software\Uniblue\DriverScanner
Key Found : HKLM\Software\YourFileDownloader
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16446
-\\ Mozilla Firefox v19.0.2 (cs)
[ File : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\prefs.js ]
Line Found : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\12.2.5.32");
Line Found : user_pref("avg.install.userSPSettings", "Ask.com");
Line Found : user_pref("extensions.BabylonToolbar.admin", false);
Line Found : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar.babTrack", "affID=112555&tt=270612_518");
Line Found : user_pref("extensions.BabylonToolbar.bbDpng", 27);
Line Found : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Line Found : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Line Found : user_pref("extensions.BabylonToolbar.hmpg", false);
Line Found : user_pref("extensions.BabylonToolbar.id", "2484ebdd000000000000eeaf7877082d");
Line Found : user_pref("extensions.BabylonToolbar.instlDay", "15518");
Line Found : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar.lastDP", 27);
Line Found : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1721:37:32");
Line Found : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "18.0");
Line Found : user_pref("extensions.BabylonToolbar.newTab", true);
Line Found : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
Line Found : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Found : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar.propectorlck", 97872001);
Line Found : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Found : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Line Found : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1721:37:32");
Line Found : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112555&tt=270612_518");
Line Found : user_pref("extensions.BabylonToolbar_i.hardId", "2484ebdd000000000000eeaf7877082d");
Line Found : user_pref("extensions.BabylonToolbar_i.id", "2484ebdd000000000000eeaf7877082d");
Line Found : user_pref("extensions.BabylonToolbar_i.instlDay", "15518");
Line Found : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Found : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Found : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1721:37:32");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.asktb.ff-original-keyword-url", "");
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [14781 octets] - [04/01/2014 22:09:13]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [14842 octets] ##########
Popravdě jsem doteď nevěděl, že tam něco takového mám. Jak to mám teda odinstalovat? # AdwCleaner v3.016 - Report created 04/01/2014 at 22:09:13
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Lou - STEVEN
# Running from : C:\Users\Lou\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\Askcom.xml
File Found : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\user.js
File Found : C:\Windows\System32\Tasks\Your File Updater
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Found : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
Folder Found C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Folder Found C:\Program Files (x86)\Common Files\Spigot
Folder Found C:\Program Files (x86)\Conduit
Folder Found C:\ProgramData\Partner
Folder Found C:\Users\Lou\AppData\Local\apn
Folder Found C:\Users\Lou\AppData\Local\AVG Secure Search
Folder Found C:\Users\Lou\AppData\Local\Conduit
Folder Found C:\Users\Lou\AppData\Local\Splashtop
Folder Found C:\Users\Lou\AppData\Local\TempDir
Folder Found C:\Users\Lou\AppData\LocalLow\AVG Secure Search
Folder Found C:\Users\Lou\AppData\LocalLow\Conduit
Folder Found C:\Users\Lou\AppData\LocalLow\Toolbar4
Folder Found C:\Users\Lou\AppData\Roaming\Babylon
Folder Found C:\Users\Lou\AppData\Roaming\dvdvideosoftiehelpers
Folder Found C:\Users\Lou\AppData\Roaming\yourfiledownloader
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\FLEXnet
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\YourFileDownloader
Key Found : [x64] HKCU\Software\AVG Secure Search
Key Found : [x64] HKCU\Software\FLEXnet
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\YourFileDownloader
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Found : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\speedupmypc
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mountainbike-challenge_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mountainbike-challenge_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_snow-transformation-pack_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_snow-transformation-pack_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\Software\systweak
Key Found : HKLM\Software\Uniblue
Key Found : HKLM\Software\Uniblue\DriverScanner
Key Found : HKLM\Software\YourFileDownloader
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16446
-\\ Mozilla Firefox v19.0.2 (cs)
[ File : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\prefs.js ]
Line Found : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\12.2.5.32");
Line Found : user_pref("avg.install.userSPSettings", "Ask.com");
Line Found : user_pref("extensions.BabylonToolbar.admin", false);
Line Found : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar.babTrack", "affID=112555&tt=270612_518");
Line Found : user_pref("extensions.BabylonToolbar.bbDpng", 27);
Line Found : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Line Found : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Line Found : user_pref("extensions.BabylonToolbar.hmpg", false);
Line Found : user_pref("extensions.BabylonToolbar.id", "2484ebdd000000000000eeaf7877082d");
Line Found : user_pref("extensions.BabylonToolbar.instlDay", "15518");
Line Found : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar.lastDP", 27);
Line Found : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1721:37:32");
Line Found : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "18.0");
Line Found : user_pref("extensions.BabylonToolbar.newTab", true);
Line Found : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
Line Found : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Found : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar.propectorlck", 97872001);
Line Found : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Found : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Line Found : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1721:37:32");
Line Found : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Found : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Found : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112555&tt=270612_518");
Line Found : user_pref("extensions.BabylonToolbar_i.hardId", "2484ebdd000000000000eeaf7877082d");
Line Found : user_pref("extensions.BabylonToolbar_i.id", "2484ebdd000000000000eeaf7877082d");
Line Found : user_pref("extensions.BabylonToolbar_i.instlDay", "15518");
Line Found : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Found : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Found : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Found : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Found : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Found : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Found : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1721:37:32");
Line Found : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Found : user_pref("extensions.asktb.ff-original-keyword-url", "");
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [14781 octets] - [04/01/2014 22:09:13]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [14842 octets] ##########
Zalman Z1
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Re: Prosím o kontrolu
V logu je
Vidim tam taky nejake stopy IObit
Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.
Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.
Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Pokud to nepouzivate a nenajdete to v seznamu programu, vypnu to pak skriptem.O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O23 - Service: TiMiniService - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
"C:\Program Files\Trend Micro\Titanium\TiMiniService.exe"
"C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe"
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2010-10-12 192520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Trend Micro Titanium]
C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe [2010-09-17 322384]
Vidim tam taky nejake stopy IObit
Pokud tedy neco v pc od IObit jeste je, zbavte se toho. Dokaze to nadelat vic skody nez uzitku2014-01-04 10:48:22 ----D---- C:\ProgramData\IObit
2014-01-04 10:48:20 ----D---- C:\Program Files (x86)\IObit
Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.
Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu
IObit jsem odinstaloval. Ještě jednou jsem koukal do nainstalovaných a nic od Trend Micro tam není, ani to nepoužívám. Kontrola v MBAM ještě probíhá.
# AdwCleaner v3.016 - Report created 04/01/2014 at 22:35:08
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Lou - STEVEN
# Running from : C:\Users\Lou\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\Users\Lou\AppData\Local\apn
Folder Deleted : C:\Users\Lou\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Lou\AppData\Local\Conduit
Folder Deleted : C:\Users\Lou\AppData\Local\Splashtop
Folder Deleted : C:\Users\Lou\AppData\Local\TempDir
Folder Deleted : C:\Users\Lou\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Lou\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Lou\AppData\LocalLow\Toolbar4
Folder Deleted : C:\Users\Lou\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Lou\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\Lou\AppData\Roaming\yourfiledownloader
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
File Deleted : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\user.js
File Deleted : C:\Windows\System32\Tasks\Your File Updater
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mountainbike-challenge_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mountainbike-challenge_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_snow-transformation-pack_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_snow-transformation-pack_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\FLEXnet
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKLM\Software\YourFileDownloader
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16446
-\\ Mozilla Firefox v19.0.2 (cs)
[ File : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\prefs.js ]
Line Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\12.2.5.32");
Line Deleted : user_pref("avg.install.userSPSettings", "Ask.com");
Line Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Line Deleted : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Line Deleted : user_pref("extensions.BabylonToolbar.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar.babTrack", "affID=112555&tt=270612_518");
Line Deleted : user_pref("extensions.BabylonToolbar.bbDpng", 27);
Line Deleted : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Line Deleted : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Line Deleted : user_pref("extensions.BabylonToolbar.hmpg", false);
Line Deleted : user_pref("extensions.BabylonToolbar.id", "2484ebdd000000000000eeaf7877082d");
Line Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15518");
Line Deleted : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Line Deleted : user_pref("extensions.BabylonToolbar.lastDP", 27);
Line Deleted : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1721:37:32");
Line Deleted : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "18.0");
Line Deleted : user_pref("extensions.BabylonToolbar.newTab", true);
Line Deleted : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
Line Deleted : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar.propectorlck", 97872001);
Line Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Deleted : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Line Deleted : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Line Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1721:37:32");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112555&tt=270612_518");
Line Deleted : user_pref("extensions.BabylonToolbar_i.hardId", "2484ebdd000000000000eeaf7877082d");
Line Deleted : user_pref("extensions.BabylonToolbar_i.id", "2484ebdd000000000000eeaf7877082d");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlDay", "15518");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Deleted : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Deleted : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Deleted : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1721:37:32");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [14999 octets] - [04/01/2014 22:09:13]
AdwCleaner[R1].txt - [15060 octets] - [04/01/2014 22:34:15]
AdwCleaner[S0].txt - [14968 octets] - [04/01/2014 22:35:08]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15029 octets] ##########
# AdwCleaner v3.016 - Report created 04/01/2014 at 22:35:08
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Lou - STEVEN
# Running from : C:\Users\Lou\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\Users\Lou\AppData\Local\apn
Folder Deleted : C:\Users\Lou\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Lou\AppData\Local\Conduit
Folder Deleted : C:\Users\Lou\AppData\Local\Splashtop
Folder Deleted : C:\Users\Lou\AppData\Local\TempDir
Folder Deleted : C:\Users\Lou\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Lou\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Lou\AppData\LocalLow\Toolbar4
Folder Deleted : C:\Users\Lou\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Lou\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\Lou\AppData\Roaming\yourfiledownloader
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Deleted : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
File Deleted : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\user.js
File Deleted : C:\Windows\System32\Tasks\Your File Updater
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mountainbike-challenge_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_mountainbike-challenge_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_snow-transformation-pack_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_snow-transformation-pack_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\FLEXnet
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKLM\Software\YourFileDownloader
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16446
-\\ Mozilla Firefox v19.0.2 (cs)
[ File : C:\Users\Lou\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\prefs.js ]
Line Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\12.2.5.32");
Line Deleted : user_pref("avg.install.userSPSettings", "Ask.com");
Line Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Line Deleted : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Line Deleted : user_pref("extensions.BabylonToolbar.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar.babTrack", "affID=112555&tt=270612_518");
Line Deleted : user_pref("extensions.BabylonToolbar.bbDpng", 27);
Line Deleted : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Line Deleted : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Line Deleted : user_pref("extensions.BabylonToolbar.hmpg", false);
Line Deleted : user_pref("extensions.BabylonToolbar.id", "2484ebdd000000000000eeaf7877082d");
Line Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15518");
Line Deleted : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Line Deleted : user_pref("extensions.BabylonToolbar.lastDP", 27);
Line Deleted : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1721:37:32");
Line Deleted : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "18.0");
Line Deleted : user_pref("extensions.BabylonToolbar.newTab", true);
Line Deleted : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
Line Deleted : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Line Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar.propectorlck", 97872001);
Line Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Line Deleted : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Line Deleted : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Line Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1721:37:32");
Line Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Line Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=112555&tt=270612_518");
Line Deleted : user_pref("extensions.BabylonToolbar_i.hardId", "2484ebdd000000000000eeaf7877082d");
Line Deleted : user_pref("extensions.BabylonToolbar_i.id", "2484ebdd000000000000eeaf7877082d");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlDay", "15518");
Line Deleted : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Line Deleted : user_pref("extensions.BabylonToolbar_i.newTab", false);
Line Deleted : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Line Deleted : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Line Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Line Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Line Deleted : user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1721:37:32");
Line Deleted : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Line Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\Lou\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [14999 octets] - [04/01/2014 22:09:13]
AdwCleaner[R1].txt - [15060 octets] - [04/01/2014 22:34:15]
AdwCleaner[S0].txt - [14968 octets] - [04/01/2014 22:35:08]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15029 octets] ##########
Zalman Z1
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Re: Prosím o kontrolu
OK. Ale kouknu na to asi az zitra, za chvili jdu spat 
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu
Jasně, žádnej problém 
tady je výsledek MBAM
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.04.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Lou :: STEVEN [administrátor]
4.1.2014 22:40:45
MBAM-log-2014-01-04 (23-40-26).txt
Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 312493
Uplynulý čas: 50 minut, 55 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 1
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir (PUP.Optional.Conduit) -> Nebyla provedena žádná instrukce.
(konec)
tady je výsledek MBAMMalwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.04.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Lou :: STEVEN [administrátor]
4.1.2014 22:40:45
MBAM-log-2014-01-04 (23-40-26).txt
Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 312493
Uplynulý čas: 50 minut, 55 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 1
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir (PUP.Optional.Conduit) -> Nebyla provedena žádná instrukce.
(konec)
Zalman Z1
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Re: Prosím o kontrolu
Tohle uz je v karantene ADWCleaneru, takze netreba resit a MBAM muzete odinstalovat.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Lou [Práva správce]
Mód : Kontrola -- Datum : 01/05/2014 11:41:45
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9320325AS +++++
--- User ---
[MBR] de303deb16c7f6d4090aa6ebc5458a90
[BSP] 2ee18edf56eb573bfe8fc4993312b762 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 52430848 | Size: 122098 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 302489598 | Size: 157545 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_01052014_114145.txt >>
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Lou [Práva správce]
Mód : Kontrola -- Datum : 01/05/2014 11:41:45
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9320325AS +++++
--- User ---
[MBR] de303deb16c7f6d4090aa6ebc5458a90
[BSP] 2ee18edf56eb573bfe8fc4993312b762 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 52430848 | Size: 122098 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 302489598 | Size: 157545 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_01052014_114145.txt >>
Zalman Z1
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Re: Prosím o kontrolu
Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu
Omlouvám se ale ten log po smazání nemám. Klikl jsem na zprávu a myslel jsem, že se to otevřelo ale neotevřelo 
Takže mám jen ten po oprava host. Jsem idiot, měl jsem to zkontrolovat
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Lou [Práva správce]
Mód : Oprava HOSTS -- Datum : 01/05/2014 12:39:09
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_01052014_123909.txt >>
RKreport[0]_D_01052014_123851.txt;RKreport[0]_S_01052014_114145.txt
EDIT: Teď jsem procházel plochu a našel toto, je to ten správný chybějící log po smazání?
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Lou [Práva správce]
Mód : Odebrat -- Datum : 01/05/2014 12:38:51
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9320325AS +++++
--- User ---
[MBR] de303deb16c7f6d4090aa6ebc5458a90
[BSP] 2ee18edf56eb573bfe8fc4993312b762 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 52430848 | Size: 122098 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 302489598 | Size: 157545 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_01052014_123851.txt >>
RKreport[0]_S_01052014_114145.txt
Takže mám jen ten po oprava host. Jsem idiot, měl jsem to zkontrolovat RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Lou [Práva správce]
Mód : Oprava HOSTS -- Datum : 01/05/2014 12:39:09
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_01052014_123909.txt >>
RKreport[0]_D_01052014_123851.txt;RKreport[0]_S_01052014_114145.txt
EDIT: Teď jsem procházel plochu a našel toto, je to ten správný chybějící log po smazání?
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Lou [Práva správce]
Mód : Odebrat -- Datum : 01/05/2014 12:38:51
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9320325AS +++++
--- User ---
[MBR] de303deb16c7f6d4090aa6ebc5458a90
[BSP] 2ee18edf56eb573bfe8fc4993312b762 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 52430848 | Size: 122098 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 302489598 | Size: 157545 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_01052014_123851.txt >>
RKreport[0]_S_01052014_114145.txt
Zalman Z1
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Re: Prosím o kontrolu
Dejte novy log z RSIT
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu
Logfile of random's system information tool 1.08 (written by random/random)
Run by Lou at 2014-01-05 14:28:32
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 84 GB (69%) free of 122 GB
Total RAM: 1953 MB (40% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:28:47, on 5.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Lou.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.yahoo.com?fr=fp-comodo
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O2 - BHO: (no name) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: HControl.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file)
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - (no file)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TiMiniService - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10890 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {5CB66744-434D-4014-9E39-9D38AB86B357}
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
taskeng.exe {50685ABE-060C-4733-B4D9-948426F0C679}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Trend Micro\Titanium\TiMiniService.exe"
"C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe"
\??\C:\Windows\system32\conhost.exe "213572052424407682156865998011867318082106519032-1310912541322724071539708422
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\P4G\BatteryLife.exe"
WLIDSvcM.exe 2716
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\alg.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\PrintIsolationHost.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4144.0.295004925\1300823976" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.3347 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="4144.1.921961368\305599695" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="4144.3.2025475151\1855189215" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="4144.4.1674720856\911075446" /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4144.6.773650287\1724223390" /prefetch:673131151
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Lou\Desktop\RKreport[0]_H_01052014_123909.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4144.8.710413762\2043201539" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4144.9.324638619\1555008536" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4144.10.1255469037\2026439021" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\Lou\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-files.com Fixer_MONTHLY.job
C:\Windows\tasks\DLL-files.com Fixer_UPDATES.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll [2010-09-17 235344]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll [2010-09-17 264528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll [2010-09-17 185680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-08-02 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-25 1138536]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll [2010-09-17 234832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-25 1138536]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe []
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-08-16 2277480]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-11-07 171992]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-11-07 399832]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-11-07 442328]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\egui]
C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDCtrl]
C:\Program Files\Elantech\ETDCtrl.exe [2010-12-31 2587944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Lou\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1]
C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe / /PROMPT /CMPID=ROC_JULY_P1 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Trend Micro Titanium]
C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe [2010-09-17 322384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
C:\Program Files (x86)\AVG Secure Search\vprot.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Lou^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Rainmeter.lnk]
C:\PROGRA~1\RAINME~1\RAINME~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-25 3764024]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FancyStart daemon.lnk - C:\Windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe
C:\Users\Lou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
HControl.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-11-07 442880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableStartupSound"=1
"DisplayLastLogonInfo"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open -
======List of files/folders created in the last 1 months======
2014-01-05 11:41:40 ----A---- C:\Windows\system32\drivers\WUDFRd.sys.bak
2014-01-05 11:41:40 ----A---- C:\Windows\system32\drivers\WUDFPf.sys.bak
2014-01-05 11:41:40 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys.bak
2014-01-05 11:41:40 ----A---- C:\Windows\system32\drivers\wmilib.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\wmiacpi.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\winusb.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\wimmount.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\WimFltr.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\wfplwf.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\WdfLdr.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\Wdf01000.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\wd.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\watchdog.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\wanarp.sys.bak
2014-01-05 11:41:37 ----A---- C:\Windows\system32\drivers\wacompen.sys.bak
2014-01-05 11:41:37 ----A---- C:\Windows\system32\drivers\vwifimp.sys.bak
2014-01-05 11:41:37 ----A---- C:\Windows\system32\drivers\vwififlt.sys.bak
2014-01-05 11:41:37 ----A---- C:\Windows\system32\drivers\vwifibus.sys.bak
2014-01-05 11:41:36 ----A---- C:\Windows\system32\drivers\vsmraid.sys.bak
2014-01-05 11:41:36 ----A---- C:\Windows\system32\drivers\volsnap.sys.bak
2014-01-05 11:41:36 ----A---- C:\Windows\system32\drivers\volmgrx.sys.bak
2014-01-05 11:41:36 ----A---- C:\Windows\system32\drivers\volmgr.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\videoprt.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\viaide.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\vhdmp.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\vgapnp.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\vga.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\vdrvroot.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\usbvideo.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\usbuhci.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\usbrpm.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\usbprint.sys.bak
2014-01-05 11:41:33 ----A---- C:\Windows\system32\drivers\usbport.sys.bak
2014-01-05 11:41:33 ----A---- C:\Windows\system32\drivers\usbohci.sys.bak
2014-01-05 11:41:33 ----A---- C:\Windows\system32\drivers\usbhub.sys.bak
2014-01-05 11:41:33 ----A---- C:\Windows\system32\drivers\usbehci.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usbd.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usbcir.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usbccgp.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usbaapl64.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usb8023.sys.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\umpass.sys.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\umbus.sys.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\ULIAGPKX.SYS.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\udfs.sys.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\UAGP35.SYS.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\tunnel.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\tssecsrv.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\tmtdi.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\tmevtmgr.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\tmcomm.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tmactmon.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\termdd.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tdx.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tdtcp.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tdpipe.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tdi.sys.bak
2014-01-05 11:41:28 ----A---- C:\Windows\system32\drivers\tcpipreg.sys.bak
2014-01-05 11:41:28 ----A---- C:\Windows\system32\drivers\tcpip.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\tape.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\swenum.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\stream.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\storport.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\stexstor.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\SSPORT.SYS.bak
2014-01-05 11:41:26 ----A---- C:\Windows\system32\drivers\srvnet.sys.bak
2014-01-05 11:41:26 ----A---- C:\Windows\system32\drivers\srv2.sys.bak
2014-01-05 11:41:26 ----A---- C:\Windows\system32\drivers\srv.sys.bak
2014-01-05 11:41:26 ----A---- C:\Windows\system32\drivers\spsys.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\spldr.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\smclib.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\smb.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\sisraid4.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\sisraid2.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\SiSG664.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\sfloppy.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\sffp_sd.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\sffp_mmc.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\sffdisk.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\sermouse.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\serial.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\serenum.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\secdrv.sys.bak
2014-01-05 11:41:23 ----A---- C:\Windows\system32\drivers\scsiport.sys.bak
2014-01-05 11:41:23 ----A---- C:\Windows\system32\drivers\scfilter.sys.bak
2014-01-05 11:41:23 ----A---- C:\Windows\system32\drivers\sbp2port.sys.bak
2014-01-05 11:41:22 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys.bak
2014-01-05 11:41:22 ----A---- C:\Windows\system32\drivers\rspndr.sys.bak
2014-01-05 11:41:22 ----A---- C:\Windows\system32\drivers\rootmdm.sys.bak
2014-01-05 11:41:22 ----A---- C:\Windows\system32\drivers\RNDISMP.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rmcast.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rfcomm.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rdyboost.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rdpwd.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\RDPREFMP.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\RDPENCDD.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\RDPCDD.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\rdpbus.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\rdbss.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\rassstp.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\raspptp.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\raspppoe.sys.bak
2014-01-05 11:41:19 ----A---- C:\Windows\system32\drivers\rasl2tp.sys.bak
2014-01-05 11:41:19 ----A---- C:\Windows\system32\drivers\rasacd.sys.bak
2014-01-05 11:41:19 ----A---- C:\Windows\system32\drivers\qwavedrv.sys.bak
2014-01-05 11:41:19 ----A---- C:\Windows\system32\drivers\ql40xx.sys.bak
2014-01-05 11:41:18 ----A---- C:\Windows\system32\drivers\ql2300.sys.bak
2014-01-05 11:41:17 ----A---- C:\Windows\system32\drivers\processr.sys.bak
2014-01-05 11:41:17 ----A---- C:\Windows\system32\drivers\portcls.sys.bak
2014-01-05 11:41:15 ----A---- C:\Windows\system32\drivers\PEAuth.sys.bak
2014-01-05 11:41:14 ----A---- C:\Windows\system32\drivers\pcw.sys.bak
2014-01-05 11:41:14 ----A---- C:\Windows\system32\drivers\pcmcia.sys.bak
2014-01-05 11:41:13 ----A---- C:\Windows\system32\drivers\pciidex.sys.bak
2014-01-05 11:41:13 ----A---- C:\Windows\system32\drivers\pciide.sys.bak
2014-01-05 11:41:13 ----A---- C:\Windows\system32\drivers\pci.sys.bak
2014-01-05 11:41:12 ----A---- C:\Windows\system32\drivers\partmgr.sys.bak
2014-01-05 11:41:12 ----A---- C:\Windows\system32\drivers\parport.sys.bak
2014-01-05 11:41:11 ----A---- C:\Windows\system32\drivers\pacer.sys.bak
2014-01-05 11:41:11 ----A---- C:\Windows\system32\drivers\ohci1394.sys.bak
2014-01-05 11:41:10 ----A---- C:\Windows\system32\drivers\nwifi.sys.bak
2014-01-05 11:41:10 ----A---- C:\Windows\system32\drivers\NV_AGP.SYS.bak
2014-01-05 11:41:09 ----A---- C:\Windows\system32\drivers\nvstor.sys.bak
2014-01-05 11:41:09 ----A---- C:\Windows\system32\drivers\nvraid.sys.bak
2014-01-05 11:41:08 ----A---- C:\Windows\system32\drivers\null.sys.bak
2014-01-05 11:41:05 ----A---- C:\Windows\system32\drivers\ntfs.sys.bak
2014-01-05 11:41:05 ----A---- C:\Windows\system32\drivers\nsiproxy.sys.bak
2014-01-05 11:41:04 ----A---- C:\Windows\system32\drivers\npfs.sys.bak
2014-01-05 11:41:04 ----A---- C:\Windows\system32\drivers\nfrd960.sys.bak
2014-01-05 11:41:04 ----A---- C:\Windows\system32\drivers\netio.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\netbt.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\netbios.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\ndproxy.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\ndiswan.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\ndisuio.sys.bak
2014-01-05 11:41:02 ----A---- C:\Windows\system32\drivers\ndistapi.sys.bak
2014-01-05 11:41:02 ----A---- C:\Windows\system32\drivers\ndiscap.sys.bak
2014-01-05 11:41:01 ----A---- C:\Windows\system32\drivers\ndis.sys.bak
2014-01-05 11:41:01 ----A---- C:\Windows\system32\drivers\mup.sys.bak
2014-01-05 11:41:01 ----A---- C:\Windows\system32\drivers\MTConfig.sys.bak
2014-01-05 11:41:01 ----A---- C:\Windows\system32\drivers\mstee.sys.bak
2014-01-05 11:41:00 ----A---- C:\Windows\system32\drivers\mssmbios.sys.bak
2014-01-05 11:41:00 ----A---- C:\Windows\system32\drivers\msrpc.sys.bak
2014-01-05 11:41:00 ----A---- C:\Windows\system32\drivers\mspqm.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\mspclock.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\mskssrv.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\msiscsi.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\msisadrv.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\mshidkmdf.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\msfs.sys.bak
2014-01-05 11:40:58 ----A---- C:\Windows\system32\drivers\msdsm.sys.bak
2014-01-05 11:40:58 ----A---- C:\Windows\system32\drivers\msahci.sys.bak
2014-01-05 11:40:58 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys.bak
2014-01-05 11:40:58 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mrxdav.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mpsdrv.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mpio.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mountmgr.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mouhid.sys.bak
2014-01-05 11:40:56 ----A---- C:\Windows\system32\drivers\mouclass.sys.bak
2014-01-05 11:40:56 ----A---- C:\Windows\system32\drivers\monitor.sys.bak
2014-01-05 11:40:56 ----A---- C:\Windows\system32\drivers\modem.sys.bak
2014-01-05 11:40:56 ----A---- C:\Windows\system32\drivers\MegaSR.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\megasas.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\mcd.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\luafv.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\lsi_scsi.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\lsi_sas2.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\lsi_sas.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\lsi_fc.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\lltdio.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\L1C62x64.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\ksthunk.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\ksecpkg.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\ksecdd.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\ks.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\kbfiltr.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\kbdhid.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\kbdclass.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\isapnp.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\irenum.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\irda.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\ipnat.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\intelppm.sys.bak
2014-01-05 11:40:51 ----A---- C:\Windows\system32\drivers\intelide.sys.bak
2014-01-05 11:40:51 ----A---- C:\Windows\system32\drivers\IntcDAud.sys.bak
2014-01-05 11:40:50 ----A---- C:\Windows\system32\drivers\iirsp.sys.bak
2014-01-05 11:40:50 ----A---- C:\Windows\system32\drivers\igdkmd64.sys.bak
2014-01-05 11:40:49 ----A---- C:\Windows\system32\drivers\iaStorV.sys.bak
2014-01-05 11:40:49 ----A---- C:\Windows\system32\drivers\iaStor.sys.bak
2014-01-05 11:40:49 ----A---- C:\Windows\system32\drivers\i8042prt.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\hwpolicy.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\http.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\HpSAMD.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\hidusb.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\hidparse.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\hidir.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\hidclass.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\hidbth.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\hidbatt.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\HECIx64.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\HdAudio.sys.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\hdaudbus.sys.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\hcw85cir.sys.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\GAGP30KX.SYS.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\fvevol.sys.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\fs_rec.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\fssfltr.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\fsdepends.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\fltMgr.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\flpydisk.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\filetrace.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\fileinfo.sys.bak
2014-01-05 11:40:44 ----A---- C:\Windows\system32\drivers\fdc.sys.bak
2014-01-05 11:40:44 ----A---- C:\Windows\system32\drivers\fastfat.sys.bak
2014-01-05 11:40:43 ----A---- C:\Windows\system32\drivers\exfat.sys.bak
2014-01-05 11:40:43 ----A---- C:\Windows\system32\drivers\evbda.sys.bak
2014-01-05 11:40:43 ----A---- C:\Windows\system32\drivers\ETD.sys.bak
2014-01-05 11:40:43 ----A---- C:\Windows\system32\drivers\errdev.sys.bak
2014-01-05 11:40:42 ----A---- C:\Windows\system32\drivers\EpfwLWF.sys.bak
2014-01-05 11:40:42 ----A---- C:\Windows\system32\drivers\elxstor.sys.bak
2014-01-05 11:40:42 ----A---- C:\Windows\system32\drivers\dxgmms1.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\dxg.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\dxapi.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\dumpfve.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\Dumpata.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\drmkaud.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\drmk.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\Diskdump.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\disk.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\discache.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\dfsc.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\crcdisk.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\crashdmp.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\CompositeBus.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\compbatt.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\cng.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\cmdide.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\CmBatt.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\Classpnp.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\circlass.sys.bak
2014-01-05 11:40:37 ----A---- C:\Windows\system32\drivers\cdrom.sys.bak
2014-01-05 11:40:37 ----A---- C:\Windows\system32\drivers\cdfs.sys.bak
2014-01-05 11:40:37 ----A---- C:\Windows\system32\drivers\bxvbda.sys.bak
2014-01-05 11:40:37 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS.bak
2014-01-05 11:40:36 ----A---- C:\Windows\system32\drivers\bthport.sys.bak
2014-01-05 11:40:36 ----A---- C:\Windows\system32\drivers\bthpan.sys.bak
2014-01-05 11:40:36 ----A---- C:\Windows\system32\drivers\bthmodem.sys.bak
2014-01-05 11:40:36 ----A---- C:\Windows\system32\drivers\bthenum.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btfilter.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btath_rcp.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btath_lwflt.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btath_hcrp.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btath_flt.sys.bak
2014-01-05 11:40:34 ----A---- C:\Windows\system32\drivers\btath_bus.sys.bak
2014-01-05 11:40:34 ----A---- C:\Windows\system32\drivers\btath_avdt.sys.bak
2014-01-05 11:40:34 ----A---- C:\Windows\system32\drivers\btath_a2dp.sys.bak
2014-01-05 11:40:34 ----A---- C:\Windows\system32\drivers\BrUsbSer.sys.bak
2014-01-05 11:40:33 ----A---- C:\Windows\system32\drivers\BrUsbMdm.sys.bak
2014-01-05 11:40:33 ----A---- C:\Windows\system32\drivers\BrSerWdm.sys.bak
2014-01-05 11:40:33 ----A---- C:\Windows\system32\drivers\BrSerId.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\bridge.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\BrFiltUp.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\BrFiltLo.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\bowser.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\blbdrive.sys.bak
2014-01-05 11:40:31 ----A---- C:\Windows\system32\drivers\beep.sys.bak
2014-01-05 11:40:31 ----A---- C:\Windows\system32\drivers\battc.sys.bak
2014-01-05 11:40:31 ----A---- C:\Windows\system32\drivers\b57nd60a.sys.bak
2014-01-05 11:40:31 ----A---- C:\Windows\system32\drivers\avgtpx64.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\avgtdia.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\avgrkx64.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\avgmfx64.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\avgldx64.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\AVGIDSFilter.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\AVGIDSEH.sys.bak
2014-01-05 11:40:29 ----A---- C:\Windows\system32\drivers\AVGIDSDriver.sys.bak
2014-01-05 11:40:28 ----A---- C:\Windows\system32\drivers\avgfwd6a.sys.bak
2014-01-05 11:40:28 ----A---- C:\Windows\system32\drivers\athrx.sys.bak
2014-01-05 11:40:28 ----A---- C:\Windows\system32\drivers\ataport.sys.bak
2014-01-05 11:40:27 ----A---- C:\Windows\system32\drivers\atapi.sys.bak
2014-01-05 11:40:27 ----A---- C:\Windows\system32\drivers\asyncmac.sys.bak
2014-01-05 11:40:27 ----A---- C:\Windows\system32\drivers\asmtxhci.sys.bak
2014-01-05 11:40:27 ----A---- C:\Windows\system32\drivers\asmthub3.sys.bak
2014-01-05 11:40:26 ----A---- C:\Windows\system32\drivers\arcsas.sys.bak
2014-01-05 11:40:26 ----A---- C:\Windows\system32\drivers\arc.sys.bak
2014-01-05 11:40:26 ----A---- C:\Windows\system32\drivers\appid.sys.bak
2014-01-05 11:40:25 ----A---- C:\Windows\system32\drivers\amdxata.sys.bak
2014-01-05 11:40:25 ----A---- C:\Windows\system32\drivers\amdsbs.sys.bak
2014-01-05 11:40:25 ----A---- C:\Windows\system32\drivers\amdsata.sys.bak
2014-01-05 11:40:25 ----A---- C:\Windows\system32\drivers\amdppm.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\amdk8.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\amdide.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\aliide.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\AGP440.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\agilevpn.sys.bak
2014-01-05 11:40:23 ----A---- C:\Windows\system32\drivers\afd.sys.bak
2014-01-05 11:40:23 ----A---- C:\Windows\system32\drivers\adpu320.sys.bak
2014-01-05 11:40:23 ----A---- C:\Windows\system32\drivers\adpahci.sys.bak
2014-01-05 11:40:23 ----A---- C:\Windows\system32\drivers\adp94xx.sys.bak
2014-01-05 11:40:22 ----A---- C:\Windows\system32\drivers\acpipmi.sys.bak
2014-01-05 11:40:22 ----A---- C:\Windows\system32\drivers\acpi.sys.bak
2014-01-05 11:40:22 ----A---- C:\Windows\system32\drivers\1394ohci.sys.bak
2014-01-05 11:40:21 ----A---- C:\Windows\system32\drivers\1394bus.sys.bak
2014-01-04 22:39:48 ----D---- C:\ProgramData\Malwarebytes
2014-01-04 22:06:31 ----D---- C:\AdwCleaner
2014-01-04 21:49:38 ----D---- C:\rsit
2014-01-04 15:51:29 ----D---- C:\ProgramData\Kaspersky Lab
2014-01-04 10:48:22 ----D---- C:\ProgramData\IObit
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-01-03 23:46:16 ----D---- C:\Program Files\AdTrustMedia
2014-01-03 23:46:15 ----D---- C:\ProgramData\Adtrustmedia
2014-01-03 19:55:55 ----D---- C:\Users\Lou\AppData\Roaming\SUPERAntiSpyware.com
2013-12-25 09:15:28 ----D---- C:\Users\Lou\AppData\Roaming\Samsung
2013-12-25 09:14:37 ----D---- C:\ProgramData\Samsung
2013-12-25 09:14:37 ----D---- C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller
2013-12-25 09:14:36 ----D---- C:\Program Files (x86)\SamsungPrinterLiveUpdate
2013-12-25 09:14:16 ----N---- C:\Windows\TotalUninstaller.exe
2013-12-25 09:14:11 ----A---- C:\Windows\system32\ssj1mlm.dll
2013-12-25 09:14:11 ----A---- C:\Windows\system32\SBuySupplies.exe
2013-12-25 09:14:06 ----A---- C:\Windows\system32\ssj1mci.exe
2013-12-25 09:14:05 ----A---- C:\Windows\system32\ssj1mci.dll
2013-12-25 09:13:16 ----D---- C:\Program Files (x86)\Samsung
2013-12-25 08:56:23 ----A---- C:\Windows\system32\drivers\aswstm.sys
2013-12-15 11:59:36 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-15 11:59:35 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-15 11:59:34 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-15 11:59:31 ----A---- C:\Windows\system32\wmp.dll
2013-12-15 11:44:17 ----D---- C:\Windows\Migration
2013-12-15 11:07:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-12-15 11:07:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-12-15 11:07:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\wksprtPS.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\tsgqec.dll
2013-12-15 11:07:31 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-12-15 11:07:31 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-12-15 11:07:31 ----A---- C:\Windows\system32\rdpudd.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\aaclient.dll
2013-12-15 11:07:30 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-12-15 11:07:30 ----A---- C:\Windows\system32\wksprt.exe
2013-12-15 11:07:30 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-12-15 11:07:30 ----A---- C:\Windows\system32\mstsc.exe
2013-12-15 11:07:29 ----A---- C:\Windows\system32\rdpcorets.dll
2013-12-15 11:07:28 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-12-15 11:07:27 ----A---- C:\Windows\system32\mstscax.dll
2013-12-15 11:00:07 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-15 11:00:06 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-12-15 11:00:06 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-12-15 11:00:04 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-15 11:00:04 ----A---- C:\Windows\system32\ieui.dll
2013-12-15 11:00:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-12-15 11:00:03 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-15 11:00:02 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-15 11:00:01 ----A---- C:\Windows\system32\wininet.dll
2013-12-15 11:00:00 ----A---- C:\Windows\SYSWOW64\url.dll
2013-12-15 11:00:00 ----A---- C:\Windows\system32\url.dll
2013-12-15 10:59:59 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-15 10:59:59 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-15 10:59:57 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-15 10:59:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-15 10:59:55 ----A---- C:\Windows\system32\urlmon.dll
2013-12-15 10:59:54 ----A---- C:\Windows\system32\iertutil.dll
2013-12-15 10:59:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-15 10:59:52 ----A---- C:\Windows\system32\jscript9.dll
2013-12-15 10:59:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-15 10:59:51 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-15 10:59:51 ----A---- C:\Windows\system32\vbscript.dll
2013-12-15 10:59:51 ----A---- C:\Windows\system32\jscript.dll
2013-12-15 10:59:49 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-15 10:59:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-15 10:59:40 ----A---- C:\Windows\system32\mshtml.dll
2013-12-15 10:59:36 ----A---- C:\Windows\system32\ieframe.dll
2013-12-15 10:59:34 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-15 10:29:22 ----D---- C:\Windows\system32\MRT
2013-12-15 10:21:08 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-12-15 10:21:08 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-12-15 10:21:07 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-12-15 10:21:07 ----A---- C:\Windows\system32\UIAnimation.dll
2013-12-15 10:21:04 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-15 10:21:04 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-15 10:20:57 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-12-15 10:20:57 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\d3d10warp.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\d3d10_1.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-15 10:20:56 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-12-15 10:20:55 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\dxgi.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\d3d10level9.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\d3d10core.dll
2013-12-15 10:20:54 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-12-15 10:20:53 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-12-15 10:20:53 ----A---- C:\Windows\system32\d3d10.dll
2013-12-15 10:20:52 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-12-15 10:20:52 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-12-15 10:20:52 ----A---- C:\Windows\system32\XpsPrint.dll
2013-12-15 10:20:52 ----A---- C:\Windows\system32\FntCache.dll
2013-12-15 10:20:51 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-12-15 10:20:51 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\DWrite.dll
2013-12-15 10:20:50 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-12-15 10:20:50 ----A---- C:\Windows\system32\d2d1.dll
2013-12-15 10:14:38 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-12-15 10:14:36 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-12-15 10:14:36 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-12-15 10:14:27 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-12-15 10:14:27 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\cryptsvc.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\cryptnet.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\crypt32.dll
2013-12-15 10:14:26 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-12-15 10:14:22 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-15 10:14:22 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-15 10:13:29 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-12-15 10:13:28 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-12-15 10:13:27 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-12-15 10:13:27 ----A---- C:\Windows\system32\tdh.dll
2013-12-15 10:13:27 ----A---- C:\Windows\system32\ntdll.dll
2013-12-15 10:13:27 ----A---- C:\Windows\system32\advapi32.dll
2013-12-15 10:13:26 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-12-15 10:13:26 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-12-15 10:13:26 ----A---- C:\Windows\system32\wow64.dll
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-12-15 10:13:24 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-12-15 10:13:24 ----A---- C:\Windows\SYSWOW64\user.exe
2013-12-15 10:13:16 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-12-15 10:13:16 ----A---- C:\Windows\system32\winsrv.dll
2013-12-15 10:13:16 ----A---- C:\Windows\system32\KernelBase.dll
2013-12-15 10:13:15 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\smss.exe
2013-12-15 10:13:15 ----A---- C:\Windows\system32\kernel32.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\csrsrv.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\conhost.exe
2013-12-15 10:13:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-15 10:13:14 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-12-15 10:13:14 ----A---- C:\Windows\system32\apisetschema.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-15 10:12:40 ----A---- C:\Windows\system32\consent.exe
2013-12-15 10:12:39 ----A---- C:\Windows\system32\appinfo.dll
2013-12-15 10:11:58 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-12-15 10:11:58 ----A---- C:\Windows\system32\certutil.exe
2013-12-15 10:11:57 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-12-15 10:11:57 ----A---- C:\Windows\system32\certenc.dll
2013-12-15 10:11:25 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-12-15 10:11:25 ----A---- C:\Windows\system32\d3d11.dll
2013-12-15 10:11:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\schannel.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\lsasrv.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\cng.sys
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\sspisrv.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\sspicli.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\secur32.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\ncrypt.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\lsass.exe
2013-12-15 10:11:19 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-12-15 10:11:18 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-12-15 10:11:18 ----A---- C:\Windows\system32\mswsock.dll
2013-12-15 10:11:11 ----A---- C:\Windows\system32\shell32.dll
2013-12-15 10:11:10 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-12-15 10:11:09 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-12-15 10:11:09 ----A---- C:\Windows\system32\shdocvw.dll
2013-12-15 10:11:00 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-12-15 10:11:00 ----A---- C:\Windows\system32\wintrust.dll
2013-12-15 10:10:24 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-12-15 10:10:24 ----A---- C:\Windows\system32\cryptdlg.dll
2013-12-15 10:10:11 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\credui.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\authui.dll
2013-12-15 10:10:10 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-12-15 10:10:10 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-12-15 10:09:40 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-15 10:09:40 ----A---- C:\Windows\system32\tzres.dll
2013-12-15 10:09:34 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-12-15 10:09:25 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-12-15 10:09:07 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-12-15 10:09:03 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-12-15 10:08:51 ----A---- C:\Windows\system32\msieftp.dll
2013-12-15 10:08:44 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-15 10:08:41 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-15 10:08:37 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-15 10:08:36 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-15 10:08:36 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-15 10:08:33 ----A---- C:\Windows\system32\comctl32.dll
2013-12-15 10:08:30 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-12-15 10:08:11 ----A---- C:\Windows\system32\wwansvc.dll
2013-12-15 10:08:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-12-15 10:08:10 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-12-15 10:08:09 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-12-15 10:08:09 ----A---- C:\Windows\system32\win32spl.dll
2013-12-15 10:08:09 ----A---- C:\Windows\system32\qedit.dll
2013-12-15 10:08:08 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-12-15 10:08:08 ----A---- C:\Windows\system32\WebClnt.dll
2013-12-15 10:08:06 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-12-15 10:08:06 ----A---- C:\Windows\system32\davclnt.dll
2013-12-15 10:08:05 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-12-15 10:08:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-12-15 10:08:03 ----A---- C:\Windows\system32\cscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\system32\wscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\system32\scrrun.dll
2013-12-15 10:08:01 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-15 10:08:01 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-15 10:08:00 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-12-15 10:08:00 ----A---- C:\Windows\system32\dciman32.dll
2013-12-15 10:08:00 ----A---- C:\Windows\system32\atmfd.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\lpk.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\fontsub.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\atmlib.dll
2013-12-15 10:07:58 ----A---- C:\Windows\system32\rpcrt4.dll
2013-12-15 10:07:57 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-12-15 10:07:52 ----A---- C:\Windows\system32\win32k.sys
2013-12-15 10:07:51 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-12-15 10:07:49 ----A---- C:\Windows\system32\drivers\afd.sys
2013-12-15 10:07:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-12-15 10:07:03 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-12-15 10:07:02 ----A---- C:\Windows\system32\gdi32.dll
2013-12-15 10:07:01 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-12-15 10:06:50 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-12-15 10:06:50 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\cdd.dll
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-12-15 09:54:16 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-12-15 09:54:15 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-12-15 09:54:15 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-12-15 09:54:15 ----A---- C:\Windows\system32\nshwfp.dll
2013-12-15 09:54:15 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-12-15 09:54:06 ----A---- C:\Windows\system32\scavengeui.dll
2013-12-08 00:52:39 ----D---- C:\Program Files (x86)\ASM104xUSB3
2013-12-07 22:14:40 ----D---- C:\Users\Lou\AppData\Roaming\Intel
2013-12-07 22:14:33 ----D---- C:\ProgramData\Roaming
2013-12-07 22:02:01 ----A---- C:\Windows\SYSWOW64\SynTPEnhPS.dll
======List of files/folders modified in the last 1 months======
2014-01-05 14:28:47 ----D---- C:\Program Files\Trend Micro
2014-01-05 14:28:46 ----D---- C:\Windows\Temp
2014-01-05 12:48:03 ----D---- C:\Windows\Prefetch
2014-01-05 11:41:40 ----D---- C:\Windows\system32\drivers
2014-01-05 11:41:05 ----D---- C:\Windows\system32\config
2014-01-05 11:36:34 ----RD---- C:\Program Files (x86)
2014-01-05 11:32:53 ----A---- C:\Windows\SYSWOW64\log.txt
2014-01-05 11:30:57 ----D---- C:\Windows\system32\Tasks
2014-01-05 11:30:19 ----D---- C:\Windows\tracing
2014-01-05 11:30:14 ----HD---- C:\ASUS.DAT
2014-01-04 22:39:48 ----HD---- C:\ProgramData
2014-01-04 22:35:09 ----D---- C:\Program Files (x86)\Common Files
2014-01-04 21:46:13 ----D---- C:\Windows
2014-01-04 21:46:01 ----RD---- C:\Program Files
2014-01-04 21:44:35 ----D---- C:\Windows\system32\DriverStore
2014-01-04 21:44:35 ----D---- C:\Windows\system32\catroot
2014-01-04 21:44:34 ----D---- C:\Windows\SysWOW64
2014-01-04 21:44:34 ----D---- C:\Windows\System32
2014-01-04 21:44:34 ----D---- C:\Windows\inf
2014-01-04 15:51:36 ----SHD---- C:\System Volume Information
2014-01-04 12:06:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-04 11:49:11 ----SHD---- C:\Config.Msi
2014-01-04 11:22:38 ----D---- C:\Windows\pss
2014-01-04 11:10:15 ----D---- C:\Program Files (x86)\Google
2014-01-04 11:07:04 ----D---- C:\Program Files (x86)\Adobe
2014-01-04 11:05:50 ----SHD---- C:\Windows\Installer
2014-01-04 11:04:40 ----D---- C:\Windows\system32\catroot2
2014-01-04 11:00:09 ----D---- C:\ProgramData\Intel
2014-01-04 11:00:05 ----D---- C:\Program Files\Common Files\Intel
2014-01-04 10:51:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-01-04 10:49:31 ----D---- C:\Program Files\Common Files
2014-01-04 00:32:35 ----D---- C:\Windows\winsxs
2014-01-03 23:54:04 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-01-03 23:53:58 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-01-03 22:05:03 ----D---- C:\Windows\Tasks
2014-01-03 22:05:03 ----D---- C:\Windows\system32\drivers\etc
2014-01-03 21:05:56 ----SD---- C:\ProgramData\Microsoft
2014-01-03 21:04:59 ----D---- C:\ProgramData\Adobe
2014-01-03 20:28:23 ----D---- C:\ProgramData\Microsoft Help
2014-01-03 20:28:20 ----A---- C:\Windows\win.ini
2014-01-03 19:56:11 ----D---- C:\Windows\debug
2014-01-03 19:47:37 ----D---- C:\Program Files\CCleaner
2013-12-25 08:56:01 ----A---- C:\Windows\system32\aswBoot.exe
2013-12-22 14:58:10 ----D---- C:\Windows\rescache
2013-12-15 14:27:58 ----D---- C:\Windows\Microsoft.NET
2013-12-15 14:26:25 ----RSD---- C:\Windows\assembly
2013-12-15 13:12:12 ----D---- C:\Program Files\Windows Media Player
2013-12-15 13:08:32 ----D---- C:\Program Files\Microsoft Silverlight
2013-12-15 13:08:31 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-12-15 13:04:43 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-15 13:04:40 ----D---- C:\Windows\AppPatch
2013-12-15 13:04:39 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-15 13:04:39 ----D---- C:\Windows\system32\cs-CZ
2013-12-15 13:04:38 ----D---- C:\Program Files\Windows Defender
2013-12-15 13:04:38 ----D---- C:\Program Files (x86)\Windows Defender
2013-12-15 13:04:30 ----D---- C:\Windows\SYSWOW64\wbem
2013-12-15 13:04:30 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-15 13:04:30 ----D---- C:\Windows\PolicyDefinitions
2013-12-15 13:04:29 ----D---- C:\Windows\system32\wbem
2013-12-15 13:04:29 ----D---- C:\Windows\system32\en-US
2013-12-15 13:04:29 ----D---- C:\Windows\system32\drivers\en-US
2013-12-15 13:04:27 ----D---- C:\Windows\SYSWOW64\migration
2013-12-15 13:04:27 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-15 13:04:26 ----D---- C:\Windows\system32\migration
2013-12-15 13:04:26 ----D---- C:\Program Files\Internet Explorer
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\it-IT
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\es-ES
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\el-GR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\de-DE
2013-12-15 13:04:20 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-12-15 13:04:20 ----D---- C:\Windows\SYSWOW64\da-DK
2013-12-15 13:04:20 ----D---- C:\Windows\system32\zh-HK
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pt-PT
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pt-BR
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pl-PL
2013-12-15 13:04:20 ----D---- C:\Windows\system32\ko-KR
2013-12-15 13:04:20 ----D---- C:\Windows\system32\it-IT
2013-12-15 13:04:20 ----D---- C:\Windows\system32\hu-HU
2013-12-15 13:04:20 ----D---- C:\Windows\system32\el-GR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\zh-TW
2013-12-15 13:04:19 ----D---- C:\Windows\system32\zh-CN
2013-12-15 13:04:19 ----D---- C:\Windows\system32\tr-TR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\sv-SE
2013-12-15 13:04:19 ----D---- C:\Windows\system32\ru-RU
2013-12-15 13:04:19 ----D---- C:\Windows\system32\nl-NL
2013-12-15 13:04:19 ----D---- C:\Windows\system32\nb-NO
2013-12-15 13:04:19 ----D---- C:\Windows\system32\ja-JP
2013-12-15 13:04:19 ----D---- C:\Windows\system32\fr-FR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\fi-FI
2013-12-15 13:04:19 ----D---- C:\Windows\system32\es-ES
2013-12-15 13:04:19 ----D---- C:\Windows\system32\de-DE
2013-12-15 13:04:19 ----D---- C:\Windows\system32\da-DK
2013-12-15 13:04:17 ----D---- C:\Program Files\Windows Journal
2013-12-15 11:48:45 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-12-14 15:00:55 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-12-07 23:18:36 ----D---- C:\Windows\system32\wfp
2013-12-07 23:18:36 ----D---- C:\Windows\system32\NDF
2013-12-07 23:18:36 ----D---- C:\Windows\system32\drivers\UMDF
2013-12-07 23:18:35 ----D---- C:\Users\Lou\AppData\Roaming\vlc
2013-12-07 23:18:35 ----D---- C:\Users\Lou\AppData\Roaming\dvdcss
2013-12-07 23:18:35 ----D---- C:\ProgramData\P4G
2013-12-07 23:18:27 ----D---- C:\Windows\registration
2013-12-07 22:55:21 ----D---- C:\Program Files\P4G
2013-12-07 17:33:46 ----D---- C:\AsusVibeData
2013-12-07 14:24:06 ----D---- C:\Program Files (x86)\ASUS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-21 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-25 207904]
R0 AVGIDSEH;AVGIDSEH; C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 26704]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2011-09-13 37456]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-11-21 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-12-25 1034464]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-12-25 422216]
R1 ATKWMIACPIIO_;ATKWMIACPI Driver_; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2011-05-23 48992]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2011-10-07 283728]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2011-08-08 46672]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2011-07-11 375376]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2012-09-05 31080]
R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2010-09-17 105552]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-12-25 78648]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2012-02-15 11576]
R2 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2010-09-17 90704]
R2 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2010-09-17 144464]
R2 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2010-09-17 67664]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2013-12-25 79672]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-08-02 36000]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-08-02 330912]
R3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-08-02 110240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-08-02 30368]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-08-02 167584]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-08-02 68256]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-08-02 280992]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-08-02 511136]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-11-07 5363200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-08-16 3056360]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-08-24 76912]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 120400]
S3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 29776]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-12-31 138024]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-02-15 52736]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-01-25 379520]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-08-02 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-08-02 103584]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-25 50344]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe [2010-09-17 241488]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-04 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-14 257416]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-11-07 279000]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-04 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-26 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Run by Lou at 2014-01-05 14:28:32
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 84 GB (69%) free of 122 GB
Total RAM: 1953 MB (40% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:28:47, on 5.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Lou.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.yahoo.com?fr=fp-comodo
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O2 - BHO: (no name) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: HControl.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file)
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - (no file)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TiMiniService - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10890 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {5CB66744-434D-4014-9E39-9D38AB86B357}
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
taskeng.exe {50685ABE-060C-4733-B4D9-948426F0C679}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Trend Micro\Titanium\TiMiniService.exe"
"C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe"
\??\C:\Windows\system32\conhost.exe "213572052424407682156865998011867318082106519032-1310912541322724071539708422
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\P4G\BatteryLife.exe"
WLIDSvcM.exe 2716
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\alg.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\PrintIsolationHost.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4144.0.295004925\1300823976" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.3347 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="4144.1.921961368\305599695" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="4144.3.2025475151\1855189215" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="4144.4.1674720856\911075446" /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4144.6.773650287\1724223390" /prefetch:673131151
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Lou\Desktop\RKreport[0]_H_01052014_123909.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4144.8.710413762\2043201539" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_10/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4144.9.324638619\1555008536" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4144.10.1255469037\2026439021" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\Lou\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-files.com Fixer_MONTHLY.job
C:\Windows\tasks\DLL-files.com Fixer_UPDATES.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll [2010-09-17 235344]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll [2010-09-17 264528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll [2010-09-17 185680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-08-02 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-25 1138536]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll [2010-09-17 234832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-25 1138536]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe []
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-08-16 2277480]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-11-07 171992]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-11-07 399832]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-11-07 442328]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\egui]
C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDCtrl]
C:\Program Files\Elantech\ETDCtrl.exe [2010-12-31 2587944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Lou\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1]
C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe / /PROMPT /CMPID=ROC_JULY_P1 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Trend Micro Titanium]
C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe [2010-09-17 322384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
C:\Program Files (x86)\AVG Secure Search\vprot.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Lou^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Rainmeter.lnk]
C:\PROGRA~1\RAINME~1\RAINME~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-25 3764024]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FancyStart daemon.lnk - C:\Windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe
C:\Users\Lou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
HControl.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-11-07 442880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableStartupSound"=1
"DisplayLastLogonInfo"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open -
======List of files/folders created in the last 1 months======
2014-01-05 11:41:40 ----A---- C:\Windows\system32\drivers\WUDFRd.sys.bak
2014-01-05 11:41:40 ----A---- C:\Windows\system32\drivers\WUDFPf.sys.bak
2014-01-05 11:41:40 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys.bak
2014-01-05 11:41:40 ----A---- C:\Windows\system32\drivers\wmilib.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\wmiacpi.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\winusb.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\wimmount.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\WimFltr.sys.bak
2014-01-05 11:41:39 ----A---- C:\Windows\system32\drivers\wfplwf.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\WdfLdr.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\Wdf01000.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\wd.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\watchdog.sys.bak
2014-01-05 11:41:38 ----A---- C:\Windows\system32\drivers\wanarp.sys.bak
2014-01-05 11:41:37 ----A---- C:\Windows\system32\drivers\wacompen.sys.bak
2014-01-05 11:41:37 ----A---- C:\Windows\system32\drivers\vwifimp.sys.bak
2014-01-05 11:41:37 ----A---- C:\Windows\system32\drivers\vwififlt.sys.bak
2014-01-05 11:41:37 ----A---- C:\Windows\system32\drivers\vwifibus.sys.bak
2014-01-05 11:41:36 ----A---- C:\Windows\system32\drivers\vsmraid.sys.bak
2014-01-05 11:41:36 ----A---- C:\Windows\system32\drivers\volsnap.sys.bak
2014-01-05 11:41:36 ----A---- C:\Windows\system32\drivers\volmgrx.sys.bak
2014-01-05 11:41:36 ----A---- C:\Windows\system32\drivers\volmgr.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\videoprt.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\viaide.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\vhdmp.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\vgapnp.sys.bak
2014-01-05 11:41:35 ----A---- C:\Windows\system32\drivers\vga.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\vdrvroot.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\usbvideo.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\usbuhci.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\usbrpm.sys.bak
2014-01-05 11:41:34 ----A---- C:\Windows\system32\drivers\usbprint.sys.bak
2014-01-05 11:41:33 ----A---- C:\Windows\system32\drivers\usbport.sys.bak
2014-01-05 11:41:33 ----A---- C:\Windows\system32\drivers\usbohci.sys.bak
2014-01-05 11:41:33 ----A---- C:\Windows\system32\drivers\usbhub.sys.bak
2014-01-05 11:41:33 ----A---- C:\Windows\system32\drivers\usbehci.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usbd.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usbcir.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usbccgp.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usbaapl64.sys.bak
2014-01-05 11:41:32 ----A---- C:\Windows\system32\drivers\usb8023.sys.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\umpass.sys.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\umbus.sys.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\ULIAGPKX.SYS.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\udfs.sys.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\UAGP35.SYS.bak
2014-01-05 11:41:31 ----A---- C:\Windows\system32\drivers\tunnel.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\tssecsrv.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\tmtdi.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\tmevtmgr.sys.bak
2014-01-05 11:41:30 ----A---- C:\Windows\system32\drivers\tmcomm.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tmactmon.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\termdd.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tdx.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tdtcp.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tdpipe.sys.bak
2014-01-05 11:41:29 ----A---- C:\Windows\system32\drivers\tdi.sys.bak
2014-01-05 11:41:28 ----A---- C:\Windows\system32\drivers\tcpipreg.sys.bak
2014-01-05 11:41:28 ----A---- C:\Windows\system32\drivers\tcpip.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\tape.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\swenum.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\stream.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\storport.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\stexstor.sys.bak
2014-01-05 11:41:27 ----A---- C:\Windows\system32\drivers\SSPORT.SYS.bak
2014-01-05 11:41:26 ----A---- C:\Windows\system32\drivers\srvnet.sys.bak
2014-01-05 11:41:26 ----A---- C:\Windows\system32\drivers\srv2.sys.bak
2014-01-05 11:41:26 ----A---- C:\Windows\system32\drivers\srv.sys.bak
2014-01-05 11:41:26 ----A---- C:\Windows\system32\drivers\spsys.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\spldr.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\smclib.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\smb.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\sisraid4.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\sisraid2.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\SiSG664.sys.bak
2014-01-05 11:41:25 ----A---- C:\Windows\system32\drivers\sfloppy.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\sffp_sd.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\sffp_mmc.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\sffdisk.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\sermouse.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\serial.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\serenum.sys.bak
2014-01-05 11:41:24 ----A---- C:\Windows\system32\drivers\secdrv.sys.bak
2014-01-05 11:41:23 ----A---- C:\Windows\system32\drivers\scsiport.sys.bak
2014-01-05 11:41:23 ----A---- C:\Windows\system32\drivers\scfilter.sys.bak
2014-01-05 11:41:23 ----A---- C:\Windows\system32\drivers\sbp2port.sys.bak
2014-01-05 11:41:22 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys.bak
2014-01-05 11:41:22 ----A---- C:\Windows\system32\drivers\rspndr.sys.bak
2014-01-05 11:41:22 ----A---- C:\Windows\system32\drivers\rootmdm.sys.bak
2014-01-05 11:41:22 ----A---- C:\Windows\system32\drivers\RNDISMP.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rmcast.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rfcomm.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rdyboost.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rdpwd.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\RDPREFMP.sys.bak
2014-01-05 11:41:21 ----A---- C:\Windows\system32\drivers\RDPENCDD.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\RDPCDD.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\rdpbus.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\rdbss.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\rassstp.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\raspptp.sys.bak
2014-01-05 11:41:20 ----A---- C:\Windows\system32\drivers\raspppoe.sys.bak
2014-01-05 11:41:19 ----A---- C:\Windows\system32\drivers\rasl2tp.sys.bak
2014-01-05 11:41:19 ----A---- C:\Windows\system32\drivers\rasacd.sys.bak
2014-01-05 11:41:19 ----A---- C:\Windows\system32\drivers\qwavedrv.sys.bak
2014-01-05 11:41:19 ----A---- C:\Windows\system32\drivers\ql40xx.sys.bak
2014-01-05 11:41:18 ----A---- C:\Windows\system32\drivers\ql2300.sys.bak
2014-01-05 11:41:17 ----A---- C:\Windows\system32\drivers\processr.sys.bak
2014-01-05 11:41:17 ----A---- C:\Windows\system32\drivers\portcls.sys.bak
2014-01-05 11:41:15 ----A---- C:\Windows\system32\drivers\PEAuth.sys.bak
2014-01-05 11:41:14 ----A---- C:\Windows\system32\drivers\pcw.sys.bak
2014-01-05 11:41:14 ----A---- C:\Windows\system32\drivers\pcmcia.sys.bak
2014-01-05 11:41:13 ----A---- C:\Windows\system32\drivers\pciidex.sys.bak
2014-01-05 11:41:13 ----A---- C:\Windows\system32\drivers\pciide.sys.bak
2014-01-05 11:41:13 ----A---- C:\Windows\system32\drivers\pci.sys.bak
2014-01-05 11:41:12 ----A---- C:\Windows\system32\drivers\partmgr.sys.bak
2014-01-05 11:41:12 ----A---- C:\Windows\system32\drivers\parport.sys.bak
2014-01-05 11:41:11 ----A---- C:\Windows\system32\drivers\pacer.sys.bak
2014-01-05 11:41:11 ----A---- C:\Windows\system32\drivers\ohci1394.sys.bak
2014-01-05 11:41:10 ----A---- C:\Windows\system32\drivers\nwifi.sys.bak
2014-01-05 11:41:10 ----A---- C:\Windows\system32\drivers\NV_AGP.SYS.bak
2014-01-05 11:41:09 ----A---- C:\Windows\system32\drivers\nvstor.sys.bak
2014-01-05 11:41:09 ----A---- C:\Windows\system32\drivers\nvraid.sys.bak
2014-01-05 11:41:08 ----A---- C:\Windows\system32\drivers\null.sys.bak
2014-01-05 11:41:05 ----A---- C:\Windows\system32\drivers\ntfs.sys.bak
2014-01-05 11:41:05 ----A---- C:\Windows\system32\drivers\nsiproxy.sys.bak
2014-01-05 11:41:04 ----A---- C:\Windows\system32\drivers\npfs.sys.bak
2014-01-05 11:41:04 ----A---- C:\Windows\system32\drivers\nfrd960.sys.bak
2014-01-05 11:41:04 ----A---- C:\Windows\system32\drivers\netio.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\netbt.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\netbios.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\ndproxy.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\ndiswan.sys.bak
2014-01-05 11:41:03 ----A---- C:\Windows\system32\drivers\ndisuio.sys.bak
2014-01-05 11:41:02 ----A---- C:\Windows\system32\drivers\ndistapi.sys.bak
2014-01-05 11:41:02 ----A---- C:\Windows\system32\drivers\ndiscap.sys.bak
2014-01-05 11:41:01 ----A---- C:\Windows\system32\drivers\ndis.sys.bak
2014-01-05 11:41:01 ----A---- C:\Windows\system32\drivers\mup.sys.bak
2014-01-05 11:41:01 ----A---- C:\Windows\system32\drivers\MTConfig.sys.bak
2014-01-05 11:41:01 ----A---- C:\Windows\system32\drivers\mstee.sys.bak
2014-01-05 11:41:00 ----A---- C:\Windows\system32\drivers\mssmbios.sys.bak
2014-01-05 11:41:00 ----A---- C:\Windows\system32\drivers\msrpc.sys.bak
2014-01-05 11:41:00 ----A---- C:\Windows\system32\drivers\mspqm.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\mspclock.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\mskssrv.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\msiscsi.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\msisadrv.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\mshidkmdf.sys.bak
2014-01-05 11:40:59 ----A---- C:\Windows\system32\drivers\msfs.sys.bak
2014-01-05 11:40:58 ----A---- C:\Windows\system32\drivers\msdsm.sys.bak
2014-01-05 11:40:58 ----A---- C:\Windows\system32\drivers\msahci.sys.bak
2014-01-05 11:40:58 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys.bak
2014-01-05 11:40:58 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mrxdav.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mpsdrv.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mpio.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mountmgr.sys.bak
2014-01-05 11:40:57 ----A---- C:\Windows\system32\drivers\mouhid.sys.bak
2014-01-05 11:40:56 ----A---- C:\Windows\system32\drivers\mouclass.sys.bak
2014-01-05 11:40:56 ----A---- C:\Windows\system32\drivers\monitor.sys.bak
2014-01-05 11:40:56 ----A---- C:\Windows\system32\drivers\modem.sys.bak
2014-01-05 11:40:56 ----A---- C:\Windows\system32\drivers\MegaSR.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\megasas.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\mcd.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\luafv.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\lsi_scsi.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\lsi_sas2.sys.bak
2014-01-05 11:40:55 ----A---- C:\Windows\system32\drivers\lsi_sas.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\lsi_fc.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\lltdio.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\L1C62x64.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\ksthunk.sys.bak
2014-01-05 11:40:54 ----A---- C:\Windows\system32\drivers\ksecpkg.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\ksecdd.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\ks.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\kbfiltr.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\kbdhid.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\kbdclass.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\isapnp.sys.bak
2014-01-05 11:40:53 ----A---- C:\Windows\system32\drivers\irenum.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\irda.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\ipnat.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys.bak
2014-01-05 11:40:52 ----A---- C:\Windows\system32\drivers\intelppm.sys.bak
2014-01-05 11:40:51 ----A---- C:\Windows\system32\drivers\intelide.sys.bak
2014-01-05 11:40:51 ----A---- C:\Windows\system32\drivers\IntcDAud.sys.bak
2014-01-05 11:40:50 ----A---- C:\Windows\system32\drivers\iirsp.sys.bak
2014-01-05 11:40:50 ----A---- C:\Windows\system32\drivers\igdkmd64.sys.bak
2014-01-05 11:40:49 ----A---- C:\Windows\system32\drivers\iaStorV.sys.bak
2014-01-05 11:40:49 ----A---- C:\Windows\system32\drivers\iaStor.sys.bak
2014-01-05 11:40:49 ----A---- C:\Windows\system32\drivers\i8042prt.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\hwpolicy.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\http.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\HpSAMD.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\hidusb.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\hidparse.sys.bak
2014-01-05 11:40:48 ----A---- C:\Windows\system32\drivers\hidir.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\hidclass.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\hidbth.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\hidbatt.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\HECIx64.sys.bak
2014-01-05 11:40:47 ----A---- C:\Windows\system32\drivers\HdAudio.sys.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\hdaudbus.sys.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\hcw85cir.sys.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\GAGP30KX.SYS.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\fvevol.sys.bak
2014-01-05 11:40:46 ----A---- C:\Windows\system32\drivers\fs_rec.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\fssfltr.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\fsdepends.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\fltMgr.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\flpydisk.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\filetrace.sys.bak
2014-01-05 11:40:45 ----A---- C:\Windows\system32\drivers\fileinfo.sys.bak
2014-01-05 11:40:44 ----A---- C:\Windows\system32\drivers\fdc.sys.bak
2014-01-05 11:40:44 ----A---- C:\Windows\system32\drivers\fastfat.sys.bak
2014-01-05 11:40:43 ----A---- C:\Windows\system32\drivers\exfat.sys.bak
2014-01-05 11:40:43 ----A---- C:\Windows\system32\drivers\evbda.sys.bak
2014-01-05 11:40:43 ----A---- C:\Windows\system32\drivers\ETD.sys.bak
2014-01-05 11:40:43 ----A---- C:\Windows\system32\drivers\errdev.sys.bak
2014-01-05 11:40:42 ----A---- C:\Windows\system32\drivers\EpfwLWF.sys.bak
2014-01-05 11:40:42 ----A---- C:\Windows\system32\drivers\elxstor.sys.bak
2014-01-05 11:40:42 ----A---- C:\Windows\system32\drivers\dxgmms1.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\dxg.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\dxapi.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\dumpfve.sys.bak
2014-01-05 11:40:41 ----A---- C:\Windows\system32\drivers\Dumpata.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\drmkaud.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\drmk.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\Diskdump.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\disk.sys.bak
2014-01-05 11:40:40 ----A---- C:\Windows\system32\drivers\discache.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\dfsc.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\crcdisk.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\crashdmp.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\CompositeBus.sys.bak
2014-01-05 11:40:39 ----A---- C:\Windows\system32\drivers\compbatt.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\cng.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\cmdide.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\CmBatt.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\Classpnp.sys.bak
2014-01-05 11:40:38 ----A---- C:\Windows\system32\drivers\circlass.sys.bak
2014-01-05 11:40:37 ----A---- C:\Windows\system32\drivers\cdrom.sys.bak
2014-01-05 11:40:37 ----A---- C:\Windows\system32\drivers\cdfs.sys.bak
2014-01-05 11:40:37 ----A---- C:\Windows\system32\drivers\bxvbda.sys.bak
2014-01-05 11:40:37 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS.bak
2014-01-05 11:40:36 ----A---- C:\Windows\system32\drivers\bthport.sys.bak
2014-01-05 11:40:36 ----A---- C:\Windows\system32\drivers\bthpan.sys.bak
2014-01-05 11:40:36 ----A---- C:\Windows\system32\drivers\bthmodem.sys.bak
2014-01-05 11:40:36 ----A---- C:\Windows\system32\drivers\bthenum.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btfilter.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btath_rcp.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btath_lwflt.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btath_hcrp.sys.bak
2014-01-05 11:40:35 ----A---- C:\Windows\system32\drivers\btath_flt.sys.bak
2014-01-05 11:40:34 ----A---- C:\Windows\system32\drivers\btath_bus.sys.bak
2014-01-05 11:40:34 ----A---- C:\Windows\system32\drivers\btath_avdt.sys.bak
2014-01-05 11:40:34 ----A---- C:\Windows\system32\drivers\btath_a2dp.sys.bak
2014-01-05 11:40:34 ----A---- C:\Windows\system32\drivers\BrUsbSer.sys.bak
2014-01-05 11:40:33 ----A---- C:\Windows\system32\drivers\BrUsbMdm.sys.bak
2014-01-05 11:40:33 ----A---- C:\Windows\system32\drivers\BrSerWdm.sys.bak
2014-01-05 11:40:33 ----A---- C:\Windows\system32\drivers\BrSerId.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\bridge.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\BrFiltUp.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\BrFiltLo.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\bowser.sys.bak
2014-01-05 11:40:32 ----A---- C:\Windows\system32\drivers\blbdrive.sys.bak
2014-01-05 11:40:31 ----A---- C:\Windows\system32\drivers\beep.sys.bak
2014-01-05 11:40:31 ----A---- C:\Windows\system32\drivers\battc.sys.bak
2014-01-05 11:40:31 ----A---- C:\Windows\system32\drivers\b57nd60a.sys.bak
2014-01-05 11:40:31 ----A---- C:\Windows\system32\drivers\avgtpx64.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\avgtdia.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\avgrkx64.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\avgmfx64.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\avgldx64.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\AVGIDSFilter.sys.bak
2014-01-05 11:40:30 ----A---- C:\Windows\system32\drivers\AVGIDSEH.sys.bak
2014-01-05 11:40:29 ----A---- C:\Windows\system32\drivers\AVGIDSDriver.sys.bak
2014-01-05 11:40:28 ----A---- C:\Windows\system32\drivers\avgfwd6a.sys.bak
2014-01-05 11:40:28 ----A---- C:\Windows\system32\drivers\athrx.sys.bak
2014-01-05 11:40:28 ----A---- C:\Windows\system32\drivers\ataport.sys.bak
2014-01-05 11:40:27 ----A---- C:\Windows\system32\drivers\atapi.sys.bak
2014-01-05 11:40:27 ----A---- C:\Windows\system32\drivers\asyncmac.sys.bak
2014-01-05 11:40:27 ----A---- C:\Windows\system32\drivers\asmtxhci.sys.bak
2014-01-05 11:40:27 ----A---- C:\Windows\system32\drivers\asmthub3.sys.bak
2014-01-05 11:40:26 ----A---- C:\Windows\system32\drivers\arcsas.sys.bak
2014-01-05 11:40:26 ----A---- C:\Windows\system32\drivers\arc.sys.bak
2014-01-05 11:40:26 ----A---- C:\Windows\system32\drivers\appid.sys.bak
2014-01-05 11:40:25 ----A---- C:\Windows\system32\drivers\amdxata.sys.bak
2014-01-05 11:40:25 ----A---- C:\Windows\system32\drivers\amdsbs.sys.bak
2014-01-05 11:40:25 ----A---- C:\Windows\system32\drivers\amdsata.sys.bak
2014-01-05 11:40:25 ----A---- C:\Windows\system32\drivers\amdppm.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\amdk8.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\amdide.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\aliide.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\AGP440.sys.bak
2014-01-05 11:40:24 ----A---- C:\Windows\system32\drivers\agilevpn.sys.bak
2014-01-05 11:40:23 ----A---- C:\Windows\system32\drivers\afd.sys.bak
2014-01-05 11:40:23 ----A---- C:\Windows\system32\drivers\adpu320.sys.bak
2014-01-05 11:40:23 ----A---- C:\Windows\system32\drivers\adpahci.sys.bak
2014-01-05 11:40:23 ----A---- C:\Windows\system32\drivers\adp94xx.sys.bak
2014-01-05 11:40:22 ----A---- C:\Windows\system32\drivers\acpipmi.sys.bak
2014-01-05 11:40:22 ----A---- C:\Windows\system32\drivers\acpi.sys.bak
2014-01-05 11:40:22 ----A---- C:\Windows\system32\drivers\1394ohci.sys.bak
2014-01-05 11:40:21 ----A---- C:\Windows\system32\drivers\1394bus.sys.bak
2014-01-04 22:39:48 ----D---- C:\ProgramData\Malwarebytes
2014-01-04 22:06:31 ----D---- C:\AdwCleaner
2014-01-04 21:49:38 ----D---- C:\rsit
2014-01-04 15:51:29 ----D---- C:\ProgramData\Kaspersky Lab
2014-01-04 10:48:22 ----D---- C:\ProgramData\IObit
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-01-04 00:08:58 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-01-03 23:46:16 ----D---- C:\Program Files\AdTrustMedia
2014-01-03 23:46:15 ----D---- C:\ProgramData\Adtrustmedia
2014-01-03 19:55:55 ----D---- C:\Users\Lou\AppData\Roaming\SUPERAntiSpyware.com
2013-12-25 09:15:28 ----D---- C:\Users\Lou\AppData\Roaming\Samsung
2013-12-25 09:14:37 ----D---- C:\ProgramData\Samsung
2013-12-25 09:14:37 ----D---- C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller
2013-12-25 09:14:36 ----D---- C:\Program Files (x86)\SamsungPrinterLiveUpdate
2013-12-25 09:14:16 ----N---- C:\Windows\TotalUninstaller.exe
2013-12-25 09:14:11 ----A---- C:\Windows\system32\ssj1mlm.dll
2013-12-25 09:14:11 ----A---- C:\Windows\system32\SBuySupplies.exe
2013-12-25 09:14:06 ----A---- C:\Windows\system32\ssj1mci.exe
2013-12-25 09:14:05 ----A---- C:\Windows\system32\ssj1mci.dll
2013-12-25 09:13:16 ----D---- C:\Program Files (x86)\Samsung
2013-12-25 08:56:23 ----A---- C:\Windows\system32\drivers\aswstm.sys
2013-12-15 11:59:36 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-15 11:59:35 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-15 11:59:34 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-15 11:59:31 ----A---- C:\Windows\system32\wmp.dll
2013-12-15 11:44:17 ----D---- C:\Windows\Migration
2013-12-15 11:07:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-12-15 11:07:44 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-12-15 11:07:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-12-15 11:07:39 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-12-15 11:07:32 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\wksprtPS.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-12-15 11:07:32 ----A---- C:\Windows\system32\tsgqec.dll
2013-12-15 11:07:31 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-12-15 11:07:31 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-12-15 11:07:31 ----A---- C:\Windows\system32\rdpudd.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-12-15 11:07:31 ----A---- C:\Windows\system32\aaclient.dll
2013-12-15 11:07:30 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-12-15 11:07:30 ----A---- C:\Windows\system32\wksprt.exe
2013-12-15 11:07:30 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-12-15 11:07:30 ----A---- C:\Windows\system32\mstsc.exe
2013-12-15 11:07:29 ----A---- C:\Windows\system32\rdpcorets.dll
2013-12-15 11:07:28 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-12-15 11:07:27 ----A---- C:\Windows\system32\mstscax.dll
2013-12-15 11:00:07 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-15 11:00:06 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-12-15 11:00:06 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-12-15 11:00:04 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-15 11:00:04 ----A---- C:\Windows\system32\ieui.dll
2013-12-15 11:00:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-12-15 11:00:03 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-15 11:00:02 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-15 11:00:01 ----A---- C:\Windows\system32\wininet.dll
2013-12-15 11:00:00 ----A---- C:\Windows\SYSWOW64\url.dll
2013-12-15 11:00:00 ----A---- C:\Windows\system32\url.dll
2013-12-15 10:59:59 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-15 10:59:59 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-15 10:59:57 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-15 10:59:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-15 10:59:55 ----A---- C:\Windows\system32\urlmon.dll
2013-12-15 10:59:54 ----A---- C:\Windows\system32\iertutil.dll
2013-12-15 10:59:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-15 10:59:52 ----A---- C:\Windows\system32\jscript9.dll
2013-12-15 10:59:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-15 10:59:51 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-15 10:59:51 ----A---- C:\Windows\system32\vbscript.dll
2013-12-15 10:59:51 ----A---- C:\Windows\system32\jscript.dll
2013-12-15 10:59:49 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-15 10:59:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-15 10:59:40 ----A---- C:\Windows\system32\mshtml.dll
2013-12-15 10:59:36 ----A---- C:\Windows\system32\ieframe.dll
2013-12-15 10:59:34 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-15 10:29:22 ----D---- C:\Windows\system32\MRT
2013-12-15 10:21:08 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-12-15 10:21:08 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-12-15 10:21:07 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-12-15 10:21:07 ----A---- C:\Windows\system32\UIAnimation.dll
2013-12-15 10:21:04 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-15 10:21:04 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-15 10:20:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-15 10:20:57 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-12-15 10:20:57 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\d3d10warp.dll
2013-12-15 10:20:57 ----A---- C:\Windows\system32\d3d10_1.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-15 10:20:56 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-15 10:20:56 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-12-15 10:20:55 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-12-15 10:20:55 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\dxgi.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\d3d10level9.dll
2013-12-15 10:20:55 ----A---- C:\Windows\system32\d3d10core.dll
2013-12-15 10:20:54 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-12-15 10:20:53 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-12-15 10:20:53 ----A---- C:\Windows\system32\d3d10.dll
2013-12-15 10:20:52 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-12-15 10:20:52 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-12-15 10:20:52 ----A---- C:\Windows\system32\XpsPrint.dll
2013-12-15 10:20:52 ----A---- C:\Windows\system32\FntCache.dll
2013-12-15 10:20:51 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-12-15 10:20:51 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-12-15 10:20:51 ----A---- C:\Windows\system32\DWrite.dll
2013-12-15 10:20:50 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-12-15 10:20:50 ----A---- C:\Windows\system32\d2d1.dll
2013-12-15 10:14:38 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-12-15 10:14:36 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-12-15 10:14:36 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-12-15 10:14:27 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-12-15 10:14:27 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\cryptsvc.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\cryptnet.dll
2013-12-15 10:14:27 ----A---- C:\Windows\system32\crypt32.dll
2013-12-15 10:14:26 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-12-15 10:14:22 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-15 10:14:22 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-15 10:13:29 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-12-15 10:13:28 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-12-15 10:13:27 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-12-15 10:13:27 ----A---- C:\Windows\system32\tdh.dll
2013-12-15 10:13:27 ----A---- C:\Windows\system32\ntdll.dll
2013-12-15 10:13:27 ----A---- C:\Windows\system32\advapi32.dll
2013-12-15 10:13:26 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-12-15 10:13:26 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-12-15 10:13:26 ----A---- C:\Windows\system32\wow64.dll
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-12-15 10:13:25 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-12-15 10:13:24 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-12-15 10:13:24 ----A---- C:\Windows\SYSWOW64\user.exe
2013-12-15 10:13:16 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-12-15 10:13:16 ----A---- C:\Windows\system32\winsrv.dll
2013-12-15 10:13:16 ----A---- C:\Windows\system32\KernelBase.dll
2013-12-15 10:13:15 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\smss.exe
2013-12-15 10:13:15 ----A---- C:\Windows\system32\kernel32.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\csrsrv.dll
2013-12-15 10:13:15 ----A---- C:\Windows\system32\conhost.exe
2013-12-15 10:13:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-15 10:13:14 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-15 10:13:14 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-12-15 10:13:14 ----A---- C:\Windows\system32\apisetschema.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-15 10:13:13 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-15 10:13:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-15 10:13:11 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-12-15 10:13:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-15 10:13:09 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-15 10:12:40 ----A---- C:\Windows\system32\consent.exe
2013-12-15 10:12:39 ----A---- C:\Windows\system32\appinfo.dll
2013-12-15 10:11:58 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-12-15 10:11:58 ----A---- C:\Windows\system32\certutil.exe
2013-12-15 10:11:57 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-12-15 10:11:57 ----A---- C:\Windows\system32\certenc.dll
2013-12-15 10:11:25 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-12-15 10:11:25 ----A---- C:\Windows\system32\d3d11.dll
2013-12-15 10:11:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\schannel.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\lsasrv.dll
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-12-15 10:11:23 ----A---- C:\Windows\system32\drivers\cng.sys
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-12-15 10:11:22 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\sspisrv.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\sspicli.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\secur32.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\ncrypt.dll
2013-12-15 10:11:22 ----A---- C:\Windows\system32\lsass.exe
2013-12-15 10:11:19 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-12-15 10:11:18 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-12-15 10:11:18 ----A---- C:\Windows\system32\mswsock.dll
2013-12-15 10:11:11 ----A---- C:\Windows\system32\shell32.dll
2013-12-15 10:11:10 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-12-15 10:11:09 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-12-15 10:11:09 ----A---- C:\Windows\system32\shdocvw.dll
2013-12-15 10:11:00 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-12-15 10:11:00 ----A---- C:\Windows\system32\wintrust.dll
2013-12-15 10:10:24 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-12-15 10:10:24 ----A---- C:\Windows\system32\cryptdlg.dll
2013-12-15 10:10:11 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\credui.dll
2013-12-15 10:10:11 ----A---- C:\Windows\system32\authui.dll
2013-12-15 10:10:10 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-12-15 10:10:10 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-12-15 10:09:40 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-15 10:09:40 ----A---- C:\Windows\system32\tzres.dll
2013-12-15 10:09:34 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-12-15 10:09:25 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-12-15 10:09:07 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-12-15 10:09:03 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-12-15 10:08:51 ----A---- C:\Windows\system32\msieftp.dll
2013-12-15 10:08:44 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-15 10:08:41 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-15 10:08:37 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-15 10:08:36 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-15 10:08:36 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-15 10:08:33 ----A---- C:\Windows\system32\comctl32.dll
2013-12-15 10:08:30 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-12-15 10:08:11 ----A---- C:\Windows\system32\wwansvc.dll
2013-12-15 10:08:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-12-15 10:08:10 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-12-15 10:08:09 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-12-15 10:08:09 ----A---- C:\Windows\system32\win32spl.dll
2013-12-15 10:08:09 ----A---- C:\Windows\system32\qedit.dll
2013-12-15 10:08:08 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-12-15 10:08:08 ----A---- C:\Windows\system32\WebClnt.dll
2013-12-15 10:08:06 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-12-15 10:08:06 ----A---- C:\Windows\system32\davclnt.dll
2013-12-15 10:08:05 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-12-15 10:08:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-12-15 10:08:03 ----A---- C:\Windows\system32\cscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\system32\wscript.exe
2013-12-15 10:08:02 ----A---- C:\Windows\system32\scrrun.dll
2013-12-15 10:08:01 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-15 10:08:01 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-15 10:08:00 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-12-15 10:08:00 ----A---- C:\Windows\system32\dciman32.dll
2013-12-15 10:08:00 ----A---- C:\Windows\system32\atmfd.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-12-15 10:07:59 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\lpk.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\fontsub.dll
2013-12-15 10:07:59 ----A---- C:\Windows\system32\atmlib.dll
2013-12-15 10:07:58 ----A---- C:\Windows\system32\rpcrt4.dll
2013-12-15 10:07:57 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-12-15 10:07:52 ----A---- C:\Windows\system32\win32k.sys
2013-12-15 10:07:51 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-12-15 10:07:49 ----A---- C:\Windows\system32\drivers\afd.sys
2013-12-15 10:07:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-12-15 10:07:03 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-12-15 10:07:02 ----A---- C:\Windows\system32\gdi32.dll
2013-12-15 10:07:01 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-12-15 10:06:50 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-12-15 10:06:50 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-12-15 10:05:57 ----A---- C:\Windows\system32\cdd.dll
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-12-15 10:00:01 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-12-15 09:54:16 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-12-15 09:54:15 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-12-15 09:54:15 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-12-15 09:54:15 ----A---- C:\Windows\system32\nshwfp.dll
2013-12-15 09:54:15 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-12-15 09:54:06 ----A---- C:\Windows\system32\scavengeui.dll
2013-12-08 00:52:39 ----D---- C:\Program Files (x86)\ASM104xUSB3
2013-12-07 22:14:40 ----D---- C:\Users\Lou\AppData\Roaming\Intel
2013-12-07 22:14:33 ----D---- C:\ProgramData\Roaming
2013-12-07 22:02:01 ----A---- C:\Windows\SYSWOW64\SynTPEnhPS.dll
======List of files/folders modified in the last 1 months======
2014-01-05 14:28:47 ----D---- C:\Program Files\Trend Micro
2014-01-05 14:28:46 ----D---- C:\Windows\Temp
2014-01-05 12:48:03 ----D---- C:\Windows\Prefetch
2014-01-05 11:41:40 ----D---- C:\Windows\system32\drivers
2014-01-05 11:41:05 ----D---- C:\Windows\system32\config
2014-01-05 11:36:34 ----RD---- C:\Program Files (x86)
2014-01-05 11:32:53 ----A---- C:\Windows\SYSWOW64\log.txt
2014-01-05 11:30:57 ----D---- C:\Windows\system32\Tasks
2014-01-05 11:30:19 ----D---- C:\Windows\tracing
2014-01-05 11:30:14 ----HD---- C:\ASUS.DAT
2014-01-04 22:39:48 ----HD---- C:\ProgramData
2014-01-04 22:35:09 ----D---- C:\Program Files (x86)\Common Files
2014-01-04 21:46:13 ----D---- C:\Windows
2014-01-04 21:46:01 ----RD---- C:\Program Files
2014-01-04 21:44:35 ----D---- C:\Windows\system32\DriverStore
2014-01-04 21:44:35 ----D---- C:\Windows\system32\catroot
2014-01-04 21:44:34 ----D---- C:\Windows\SysWOW64
2014-01-04 21:44:34 ----D---- C:\Windows\System32
2014-01-04 21:44:34 ----D---- C:\Windows\inf
2014-01-04 15:51:36 ----SHD---- C:\System Volume Information
2014-01-04 12:06:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-04 11:49:11 ----SHD---- C:\Config.Msi
2014-01-04 11:22:38 ----D---- C:\Windows\pss
2014-01-04 11:10:15 ----D---- C:\Program Files (x86)\Google
2014-01-04 11:07:04 ----D---- C:\Program Files (x86)\Adobe
2014-01-04 11:05:50 ----SHD---- C:\Windows\Installer
2014-01-04 11:04:40 ----D---- C:\Windows\system32\catroot2
2014-01-04 11:00:09 ----D---- C:\ProgramData\Intel
2014-01-04 11:00:05 ----D---- C:\Program Files\Common Files\Intel
2014-01-04 10:51:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-01-04 10:49:31 ----D---- C:\Program Files\Common Files
2014-01-04 00:32:35 ----D---- C:\Windows\winsxs
2014-01-03 23:54:04 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-01-03 23:53:58 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-01-03 22:05:03 ----D---- C:\Windows\Tasks
2014-01-03 22:05:03 ----D---- C:\Windows\system32\drivers\etc
2014-01-03 21:05:56 ----SD---- C:\ProgramData\Microsoft
2014-01-03 21:04:59 ----D---- C:\ProgramData\Adobe
2014-01-03 20:28:23 ----D---- C:\ProgramData\Microsoft Help
2014-01-03 20:28:20 ----A---- C:\Windows\win.ini
2014-01-03 19:56:11 ----D---- C:\Windows\debug
2014-01-03 19:47:37 ----D---- C:\Program Files\CCleaner
2013-12-25 08:56:01 ----A---- C:\Windows\system32\aswBoot.exe
2013-12-22 14:58:10 ----D---- C:\Windows\rescache
2013-12-15 14:27:58 ----D---- C:\Windows\Microsoft.NET
2013-12-15 14:26:25 ----RSD---- C:\Windows\assembly
2013-12-15 13:12:12 ----D---- C:\Program Files\Windows Media Player
2013-12-15 13:08:32 ----D---- C:\Program Files\Microsoft Silverlight
2013-12-15 13:08:31 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-12-15 13:04:43 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-15 13:04:40 ----D---- C:\Windows\AppPatch
2013-12-15 13:04:39 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-15 13:04:39 ----D---- C:\Windows\system32\cs-CZ
2013-12-15 13:04:38 ----D---- C:\Program Files\Windows Defender
2013-12-15 13:04:38 ----D---- C:\Program Files (x86)\Windows Defender
2013-12-15 13:04:30 ----D---- C:\Windows\SYSWOW64\wbem
2013-12-15 13:04:30 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-15 13:04:30 ----D---- C:\Windows\PolicyDefinitions
2013-12-15 13:04:29 ----D---- C:\Windows\system32\wbem
2013-12-15 13:04:29 ----D---- C:\Windows\system32\en-US
2013-12-15 13:04:29 ----D---- C:\Windows\system32\drivers\en-US
2013-12-15 13:04:27 ----D---- C:\Windows\SYSWOW64\migration
2013-12-15 13:04:27 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-15 13:04:26 ----D---- C:\Windows\system32\migration
2013-12-15 13:04:26 ----D---- C:\Program Files\Internet Explorer
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\it-IT
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\es-ES
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\el-GR
2013-12-15 13:04:21 ----D---- C:\Windows\SYSWOW64\de-DE
2013-12-15 13:04:20 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-12-15 13:04:20 ----D---- C:\Windows\SYSWOW64\da-DK
2013-12-15 13:04:20 ----D---- C:\Windows\system32\zh-HK
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pt-PT
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pt-BR
2013-12-15 13:04:20 ----D---- C:\Windows\system32\pl-PL
2013-12-15 13:04:20 ----D---- C:\Windows\system32\ko-KR
2013-12-15 13:04:20 ----D---- C:\Windows\system32\it-IT
2013-12-15 13:04:20 ----D---- C:\Windows\system32\hu-HU
2013-12-15 13:04:20 ----D---- C:\Windows\system32\el-GR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\zh-TW
2013-12-15 13:04:19 ----D---- C:\Windows\system32\zh-CN
2013-12-15 13:04:19 ----D---- C:\Windows\system32\tr-TR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\sv-SE
2013-12-15 13:04:19 ----D---- C:\Windows\system32\ru-RU
2013-12-15 13:04:19 ----D---- C:\Windows\system32\nl-NL
2013-12-15 13:04:19 ----D---- C:\Windows\system32\nb-NO
2013-12-15 13:04:19 ----D---- C:\Windows\system32\ja-JP
2013-12-15 13:04:19 ----D---- C:\Windows\system32\fr-FR
2013-12-15 13:04:19 ----D---- C:\Windows\system32\fi-FI
2013-12-15 13:04:19 ----D---- C:\Windows\system32\es-ES
2013-12-15 13:04:19 ----D---- C:\Windows\system32\de-DE
2013-12-15 13:04:19 ----D---- C:\Windows\system32\da-DK
2013-12-15 13:04:17 ----D---- C:\Program Files\Windows Journal
2013-12-15 11:48:45 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-12-14 15:00:55 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-12-07 23:18:36 ----D---- C:\Windows\system32\wfp
2013-12-07 23:18:36 ----D---- C:\Windows\system32\NDF
2013-12-07 23:18:36 ----D---- C:\Windows\system32\drivers\UMDF
2013-12-07 23:18:35 ----D---- C:\Users\Lou\AppData\Roaming\vlc
2013-12-07 23:18:35 ----D---- C:\Users\Lou\AppData\Roaming\dvdcss
2013-12-07 23:18:35 ----D---- C:\ProgramData\P4G
2013-12-07 23:18:27 ----D---- C:\Windows\registration
2013-12-07 22:55:21 ----D---- C:\Program Files\P4G
2013-12-07 17:33:46 ----D---- C:\AsusVibeData
2013-12-07 14:24:06 ----D---- C:\Program Files (x86)\ASUS
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-21 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-25 207904]
R0 AVGIDSEH;AVGIDSEH; C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 26704]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2011-09-13 37456]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-11-21 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-12-25 1034464]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-12-25 422216]
R1 ATKWMIACPIIO_;ATKWMIACPI Driver_; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2011-05-23 48992]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2011-10-07 283728]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2011-08-08 46672]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2011-07-11 375376]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2012-09-05 31080]
R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2010-09-17 105552]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-12-25 78648]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2012-02-15 11576]
R2 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2010-09-17 90704]
R2 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2010-09-17 144464]
R2 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2010-09-17 67664]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2013-12-25 79672]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-08-02 36000]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-08-02 330912]
R3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-08-02 110240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-08-02 30368]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-08-02 167584]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-08-02 68256]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-08-02 280992]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-08-02 511136]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-11-07 5363200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-08-16 3056360]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-08-24 76912]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 120400]
S3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 29776]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-12-31 138024]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-02-15 52736]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-01-25 379520]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-08-02 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-08-02 103584]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-25 50344]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 TiMiniService;TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe [2010-09-17 241488]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-04 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-14 257416]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-11-07 279000]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-04 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-26 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Zalman Z1
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Re: Prosím o kontrolu
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu
Zkoušel jsem to 2x a po vyskočení tohohle okna se to sekne a žádné logy se nevytvoří
Zalman Z1
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Zdroj: Seasonic Energy Knight SS-500ET, T3 500W
Základní deska: ASUS B85M-G - Intel B85
RAM: Kingston HyperX Fury Blue 8GB (2x4GB) DDR3 1600
Procesor: Intel Core i5-4460
HDD: WD Caviar Blue EX - 1TB
Grafická karta: MSI N750Ti Twin Frozr IV 2GD5/OC Gaming
Přispějete na provoz fóra?