Logfile of random's system information tool 1.08 (written by random/random)
Run by Stenley at 2014-10-01 11:43:02
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 55 GB (6%) free of 954 GB
Total RAM: 8191 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:43:17, on 1.10.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17280)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Overwolf\Overwolf.exe
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Users\Stenley\AppData\Roaming\ICQM\icq.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
C:\GIGABYTE FORCE\GIGABYTE FORCE.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Common Files\Overwolf\0.80.20.0\OverwolfHelper.exe
C:\Program Files (x86)\Overwolf\0.80.20.0\OverwolfBrowser.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
C:\Program Files\trend micro\Stenley.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [GMouse] "C:\GIGABYTE FORCE\GIGABYTE FORCE.EXE" /hide
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [NetLimiter] C:\Program Files\NetLimiter 3\NLClientApp.exe /tray
O4 - HKCU\..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [icq] C:\Users\Stenley\AppData\Roaming\ICQM\icq.exe -CU
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Stenley\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: ImageBrowser EX Agent.lnk = C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Stenley\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Stenley\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) -
http://www.battlefieldheroes.com/static ... .127.0.cab
O16 - DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} (Battlefield Play4Free Updater) -
https://battlefield.play4free.com/stati ... 0.66.2.cab
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Application Driver Auto Removal Service (01) (appdrvrem01) - Unknown owner - C:\Windows\System32\appdrvrem01.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ASUS\Bluetooth Software\btwdins.exe
O23 - Service: CoreScanner - Motorola Solutions, Inc. - C:\Program Files\Motorola Scanner\Common\CoreScanner.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NetLimiter 3 Service (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 3\nlsvc.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RSM Driver Provider Service (rsmdriverproviderservice) - Motorola Solutions, Inc. - C:\Program Files\Motorola Scanner\Common\RSMDriverProviderService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Symbol Scanner Management (ScnSrvc) - Motorola Solutions, Inc. - C:\Program Files\Motorola Scanner\Common\ScannerService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9887 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\ASUS\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files\Motorola Scanner\Common\CoreScanner.exe"
"C:\Program Files\NetLimiter 3\nlsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Motorola Scanner\Common\RSMDriverProviderService.exe"
"C:\Program Files\Motorola Scanner\Common\ScannerService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\NetLimiter 3\NLClientApp.exe" /tray
"C:\Program Files (x86)\Overwolf\Overwolf.exe" -silent
FAC87CB64EB
"C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" -tray
"C:\Users\Stenley\AppData\Roaming\ICQM\icq.exe" -CU
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
"C:\Program Files\ASUS\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe"
"C:\GIGABYTE FORCE\GIGABYTE FORCE.exe" /hide
WLIDSvcM.exe 2364
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\ASUS\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\ASUS\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{C5805EE6-F998-471D-95DF-B574AC5C4F35}
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
{84B77289-2BA0-416F-BBA3-C98C6A9FF8F9}
C:\Windows\system32\SearchIndexer.exe /Embedding
{2D1F8362-88E9-4CEC-B72C-6B5CBF759949}
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Common Files\Overwolf\0.80.20.0\OverwolfHelper.exe" "path=C:\Program Files (x86)\Overwolf\0.80.20.0" "overwolfprocid=2612"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Overwolf\0.80.20.0\OverwolfBrowser.exe" --type=gpu-process --channel="2612.0.1272146882\2120699445" --no-sandbox --lang=en-US --log-file="C:\Users\Stenley\AppData\Local\Overwolf\Log\OverwolfBrowser_2612.log" --log-severity=info --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --gpu-vendor-id=0x1002 --gpu-device-id=0x68b8 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=9.12.0.0 --lang=en-US --log-file="C:\Users\Stenley\AppData\Local\Overwolf\Log\OverwolfBrowser_2612.log" --log-severity=info /prefetch:822062411
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Common Files\Overwolf\0.80.20.0\OverwolfHelper64.exe" "path=C:\Program Files (x86)\Overwolf\0.80.20.0\x64\OWExplorerLauncher.dll
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4688.273a5f20.1025386844 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 4688 "\\.\pipe\gecko-crash-server-pipe.4688" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe" --proxy-stub-channel=Flash5468.10FF3FA8.15229 --host-broker-channel=Flash5468.10FF3FA8.1929 --host-pid=5468 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe" --channel=3744.002CF574.1528340644 --proxy-stub-channel=Flash5468.10FF3FA8.15229 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll" --host-npapi-version=27 --type=renderer
"C:\Users\Stenley\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-06 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-06 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 1331288]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"NetLimiter"=C:\Program Files\NetLimiter 3\NLClientApp.exe [2010-08-30 2790400]
"Overwolf"=C:\Program Files (x86)\Overwolf\Overwolf.exe [2014-09-21 39712]
"NokiaSuite.exe"=C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2013-10-02 1090912]
"icq"=C:\Users\Stenley\AppData\Roaming\ICQM\icq.exe [2014-04-10 33664344]
"uTorrent"=C:\Users\Stenley\AppData\Roaming\uTorrent\uTorrent.exe [2014-09-22 1416016]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2014-09-16 3600216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files (x86)\ICQ7M\ICQ.exe [2012-05-11 127040]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
"GMouse"=C:\GIGABYTE FORCE\GIGABYTE FORCE.EXE [2012-10-04 1253376]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\ASUS\Bluetooth Software\BTTray.exe
ImageBrowser EX Agent.lnk - C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\ASUS\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2014-10-01 11:43:02 ----D---- C:\rsit
2014-10-01 11:43:02 ----D---- C:\Program Files\trend micro
2014-09-25 12:58:06 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-09-23 22:38:15 ----A---- C:\Windows\system32\ieui.dll
2014-09-23 22:38:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-09-23 22:38:13 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-09-23 22:38:13 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-09-23 22:38:13 ----A---- C:\Windows\system32\jscript9diag.dll
2014-09-23 22:38:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-23 22:38:13 ----A---- C:\Windows\system32\iernonce.dll
2014-09-23 22:38:12 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-09-23 22:38:12 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-09-23 22:38:12 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-09-23 22:38:12 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-09-23 22:38:12 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-09-23 22:38:12 ----A---- C:\Windows\system32\vbscript.dll
2014-09-23 22:38:12 ----A---- C:\Windows\system32\ieUnatt.exe
2014-09-23 22:38:12 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-09-23 22:38:12 ----A---- C:\Windows\system32\dxtrans.dll
2014-09-23 22:38:12 ----A---- C:\Windows\system32\dxtmsft.dll
2014-09-23 22:38:11 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-09-23 22:38:11 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-09-23 22:38:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-09-23 22:38:11 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-09-23 22:38:11 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-09-23 22:38:11 ----A---- C:\Windows\system32\msrating.dll
2014-09-23 22:38:11 ----A---- C:\Windows\system32\mshtmled.dll
2014-09-23 22:38:11 ----A---- C:\Windows\system32\msfeeds.dll
2014-09-23 22:38:11 ----A---- C:\Windows\system32\jsproxy.dll
2014-09-23 22:38:11 ----A---- C:\Windows\system32\iesetup.dll
2014-09-23 22:38:10 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-09-23 22:38:10 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-09-23 22:38:10 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-09-23 22:38:10 ----A---- C:\Windows\system32\iedkcs32.dll
2014-09-23 22:38:10 ----A---- C:\Windows\system32\ie4uinit.exe
2014-09-23 22:38:09 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-09-23 22:38:09 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-09-23 22:38:09 ----A---- C:\Windows\system32\mshtml.dll
2014-09-23 22:38:09 ----A---- C:\Windows\system32\ieapfltr.dll
2014-09-23 22:38:08 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-09-23 22:38:08 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-23 22:38:08 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-09-23 22:38:08 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-09-23 22:38:08 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-09-23 22:38:06 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-09-23 22:38:06 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-09-23 22:38:06 ----A---- C:\Windows\system32\wininet.dll
2014-09-23 22:38:06 ----A---- C:\Windows\system32\iertutil.dll
2014-09-23 22:38:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-09-23 22:38:05 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-09-23 22:38:05 ----A---- C:\Windows\system32\urlmon.dll
2014-09-23 22:38:05 ----A---- C:\Windows\system32\jscript9.dll
2014-09-23 22:38:03 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-09-23 22:38:03 ----A---- C:\Windows\system32\ieframe.dll
2014-09-23 22:38:02 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-09-23 22:25:45 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-09-23 22:25:45 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-09-23 22:24:30 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-09-23 22:24:30 ----A---- C:\Windows\system32\tzres.dll
2014-09-23 22:24:00 ----A---- C:\Windows\system32\kerberos.dll
2014-09-23 22:23:59 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-09-23 22:23:59 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-09-23 22:23:59 ----A---- C:\Windows\system32\lsasrv.dll
2014-09-23 22:23:58 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-09-23 22:23:47 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-09-23 22:23:27 ----A---- C:\Windows\system32\aepdu.dll
2014-09-23 22:23:25 ----A---- C:\Windows\system32\aeinv.dll
2014-09-23 22:22:46 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-09-23 22:22:46 ----A---- C:\Windows\system32\d3d10warp.dll
2014-09-16 12:29:15 ----A---- C:\Windows\system32\drivers\btwampfl.sys
2014-09-16 12:26:12 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2014-09-16 12:26:12 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2014-09-16 12:26:12 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2014-09-16 12:26:12 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2014-09-16 12:26:12 ----A---- C:\Windows\system32\drivers\bcbtums.sys
2014-09-16 12:25:35 ----D---- C:\Program Files\ASUS
2014-09-10 14:27:10 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-09-09 14:52:29 ----D---- C:\ProgramData\IePluginServices
2014-09-09 14:52:24 ----D---- C:\ProgramData\WindowsMangerProtect
2014-09-09 14:52:22 ----D---- C:\Program Files (x86)\SupTab
======List of files/folders modified in the last 1 months======
2014-10-01 11:43:13 ----D---- C:\Windows\Prefetch
2014-10-01 11:43:12 ----D---- C:\Windows\temp
2014-10-01 11:43:02 ----RD---- C:\Program Files
2014-10-01 11:41:02 ----D---- C:\Users\Stenley\AppData\Roaming\uTorrent
2014-10-01 11:38:57 ----D---- C:\Windows\system32\config
2014-10-01 11:26:06 ----D---- C:\ProgramData\Origin
2014-10-01 11:24:02 ----D---- C:\Program Files (x86)\Origin
2014-10-01 11:23:39 ----D---- C:\Windows\System32
2014-09-30 16:07:11 ----D---- C:\Users\Stenley\AppData\Roaming\vlc
2014-09-30 11:25:45 ----A---- C:\Windows\system32\symbscnr.log.bak
2014-09-29 18:50:54 ----SHD---- C:\System Volume Information
2014-09-28 13:36:59 ----D---- C:\Windows\rescache
2014-09-25 20:32:27 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-25 16:56:59 ----D---- C:\Users\Stenley\AppData\Roaming\Skype
2014-09-25 12:59:16 ----RD---- C:\Program Files (x86)
2014-09-24 21:38:38 ----D---- C:\Windows\Microsoft.NET
2014-09-24 20:37:00 ----RSD---- C:\Windows\assembly
2014-09-23 22:54:51 ----D---- C:\Windows\winsxs
2014-09-23 22:52:10 ----D---- C:\Windows\system32\catroot
2014-09-23 22:51:49 ----D---- C:\Windows\SYSWOW64\en-US
2014-09-23 22:51:49 ----D---- C:\Windows\SysWOW64
2014-09-23 22:51:49 ----D---- C:\Program Files\Internet Explorer
2014-09-23 22:51:48 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-09-23 22:51:48 ----D---- C:\Windows\system32\en-US
2014-09-23 22:51:48 ----D---- C:\Windows\system32\cs-CZ
2014-09-23 22:51:48 ----D---- C:\Program Files (x86)\Internet Explorer
2014-09-23 22:41:37 ----SHD---- C:\Windows\Installer
2014-09-23 22:38:35 ----D---- C:\Windows\system32\catroot2
2014-09-23 22:36:48 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-09-23 22:36:37 ----D---- C:\Windows\inf
2014-09-23 22:36:35 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-09-23 22:35:24 ----D---- C:\Windows
2014-09-23 22:35:23 ----D---- C:\Windows\system32\drivers
2014-09-23 22:35:22 ----D---- C:\Program Files\Microsoft Security Client
2014-09-23 22:35:21 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-09-23 22:35:06 ----D---- C:\Windows\system32\MRT
2014-09-23 22:26:50 ----A---- C:\Windows\system32\MRT.exe
2014-09-23 22:25:30 ----SD---- C:\Windows\system32\CompatTel
2014-09-23 22:15:12 ----D---- C:\Windows\system32\Tasks
2014-09-23 21:27:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-09-22 21:10:03 ----D---- C:\Program Files (x86)\Overwolf
2014-09-22 08:42:39 ----N---- C:\Windows\system32\MpSigStub.exe
2014-09-18 18:44:38 ----D---- C:\Program Files (x86)\Origin Games
2014-09-16 12:27:51 ----D---- C:\Windows\system32\DriverStore
2014-09-15 11:36:33 ----D---- C:\Program Files (x86)\Battle.net
2014-09-15 11:08:47 ----D---- C:\Program Files (x86)\wow
2014-09-14 23:55:59 ----D---- C:\Windows\debug
2014-09-14 23:48:05 ----SD---- C:\ProgramData\Microsoft
2014-09-12 14:02:24 ----D---- C:\Users\Stenley\AppData\Roaming\TS3Client
2014-09-10 17:15:22 ----D---- C:\Windows\Tasks
2014-09-10 17:15:22 ----D---- C:\Windows\system32\wfp
2014-09-10 17:15:18 ----D---- C:\Windows\system32\wbem
2014-09-10 17:14:04 ----D---- C:\Windows\SYSWOW64\wbem
2014-09-10 17:14:03 ----D---- C:\Windows\PolicyDefinitions
2014-09-10 17:14:01 ----D---- C:\Windows\system32\Macromed
2014-09-10 17:14:01 ----D---- C:\Windows\system32\drivers\UMDF
2014-09-10 17:14:01 ----D---- C:\Windows\system32\CodeIntegrity
2014-09-10 17:13:33 ----D---- C:\Program Files\Motorola Scanner
2014-09-10 17:13:33 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-09-10 17:13:32 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-09-10 17:12:58 ----D---- C:\Windows\registration
2014-09-10 17:10:34 ----D---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 269008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-04-28 560184]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 appdrv01;Application Driver (01); C:\Windows\System32\Drivers\appdrv01.sys [2012-01-03 3852976]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 nltdi;nltdi; \??\C:\Program Files\NetLimiter 3\nltdi.sys [2010-08-30 88200]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 125584]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 552960]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2012-09-24 165688]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-12-03 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-05-01 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-06 21544]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
R3 NLNdisMP;NLNdisMP; C:\Windows\system32\DRIVERS\nlndis.sys [2010-08-30 33416]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2012-03-19 1454896]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 aq0i1wa1;aq0i1wa1; C:\Windows\system32\drivers\aq0i1wa1.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-08-23 120336]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 30208]
S3 NLNdisPT;NetLimiter Ndis Protocol Service; C:\Windows\system32\DRIVERS\nlndis.sys [2010-08-30 33416]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vjoy;vJoy Device; C:\Windows\system32\DRIVERS\vjoy.sys [2014-04-21 45168]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 XG762_VS;ZyXEL 802.11g XG762 1211 Vista Driver; C:\Windows\system32\DRIVERS\WlanGZG.sys []
S3 ZDCNDIS6a64;ZDCNDIS Protocol Driver; \??\C:\Windows\syswow64\ZDCNDIS6a64.sys [2010-03-26 45624]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-04 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 240640]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-12-19 361984]
R2 btwdins;Bluetooth Service; C:\Program Files\ASUS\Bluetooth Software\btwdins.exe [2012-12-06 1005944]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 CoreScanner;CoreScanner; C:\Program Files\Motorola Scanner\Common\CoreScanner.exe [2013-02-20 382976]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 23784]
R2 nlsvc;NetLimiter 3 Service; C:\Program Files\NetLimiter 3\nlsvc.exe [2010-08-30 1743872]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-30 75136]
R2 rsmdriverproviderservice;RSM Driver Provider Service; C:\Program Files\Motorola Scanner\Common\RSMDriverProviderService.exe [2013-02-20 69120]
R2 ScnSrvc;Symbol Scanner Management; C:\Program Files\Motorola Scanner\Common\ScannerService.exe [2013-02-20 240640]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 368624]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 appdrvrem01;Application Driver Auto Removal Service (01); C:\Windows\System32\appdrvrem01.exe [2012-01-03 551896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-23 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-08-19 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-25 114288]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2014-09-21 998176]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-11-19 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
silnejsim stroji(zjistil jsem to nedavno kdyz na me poprve vyskocilo tohle okno) ..jeji notebook jsem zabezpecil lepe a pridal jsem i "noscript" doplnek bohuzel na mem PC me to nenapadlo