RogueKiller V10.0.8.0 (x64) [Nov 20 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Andrej [Administrator]
Mode : Delete -- Date : 12/05/2014 16:31:30
¤¤¤ Processes : 0 ¤¤¤
¤¤¤ Registry : 17 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-2347622384-2809294876-4271719555-1001\Software\Microsoft\Windows\CurrentVersion\Run | Prime95 : C:\Users\Andrej\Desktop\prime 95\prime95.exe [x] -> Deleted
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-2347622384-2809294876-4271719555-1001\Software\Microsoft\Windows\CurrentVersion\Run | Prime95 : C:\Users\Andrej\Desktop\prime 95\prime95.exe -> ERROR [2]
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\GPUZ -> Deleted
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GPUZ -> Deleted
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\GPUZ -> Deleted
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 195.34.133.21 212.186.211.21 [AUSTRIA (AT)][AUSTRIA (AT)] -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 195.34.133.21 212.186.211.21 [AUSTRIA (AT)][AUSTRIA (AT)] -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 195.34.133.21 212.186.211.21 [AUSTRIA (AT)][AUSTRIA (AT)] -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{965E02D6-AA7C-4F7A-AAB9-A2A4B247758C} | DhcpNameServer : 195.34.133.21 212.186.211.21 [AUSTRIA (AT)][AUSTRIA (AT)] -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{965E02D6-AA7C-4F7A-AAB9-A2A4B247758C} | DhcpNameServer : 195.34.133.21 212.186.211.21 [AUSTRIA (AT)][AUSTRIA (AT)] -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{965E02D6-AA7C-4F7A-AAB9-A2A4B247758C} | DhcpNameServer : 195.34.133.21 212.186.211.21 [AUSTRIA (AT)][AUSTRIA (AT)] -> Replaced ()
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Replaced (2)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Replaced (2)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Replaced (0)
¤¤¤ Tasks : 0 ¤¤¤
¤¤¤ Files : 0 ¤¤¤
¤¤¤ Hosts File : 0 ¤¤¤
¤¤¤ Antirootkit : 1 (Driver: Loaded) ¤¤¤
[IAT:Addr] (explorer.exe @ aimp_menu64.dll) kernel32.dll - GetNativeSystemInfo : Unknown @ 0x0
¤¤¤ Web browsers : 0 ¤¤¤
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: OCZ-VERTEX4 ATA Device +++++
--- User ---
[MBR] 49907be2fe90e2f2377a96866cc540af
[BSP] 876eca3be707247bca5efc9dd5f12d0d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 244096 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: WDC WD1003FZEX-00MK2A0 ATA Device +++++
--- User ---
[MBR] 5c023dd924151433b9b8779af3be9430
[BSP] 57f5bf7c92ba40f5f2b4d3767cc50241 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_SCN_12032014_120234.log - RKreport_SCN_12052014_162645.log - RKreport_SCN_12052014_162927.log
Zamrzanie PC - prosím o pomoc Vyřešeno
Re: Zamrzanie PC - prosím o pomoc
trochu zbrklo som to cital, a po skonceni programu som restartoval pc, tento skript nizsie mi to spravilo...
Re: Zamrzanie PC - prosím o pomoc
Zoek.exe v5.0.0.0 Updated 03-December-2014
Tool run by Andrej on pi 05. 12. 2014 at 16:38:16,50.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Andrej\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean]
==== System Restore Info ======================
5. 12. 2014 16:40:28 Zoek.exe System Restore Point Created Succesfully.
==== Empty Folders Check ======================
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Users\Andrej\AppData\Roaming\XCPCSync.OEM deleted successfully
C:\Users\Andrej\AppData\Local\VirtualStore deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\Users\Andrej\AppData\Roaming\OpenCandy deleted
C:\PROGRA~3\Package Cache deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2014-12-04 21:59:16 B1CA646A688C9DD1F899A776157C14D7 456414 ------w- C:\Windows\asusstx2.ico
2014-12-04 21:59:16 9F009D41E2577BA3D50D6EB37E866422 1144983 ------w- C:\Windows\KB936225x64.msu
2014-12-04 21:59:15 FC286821DB02A1D3B571BFD356CB7159 51164 ----a-w- C:\Windows\CMICNFGSTXII.INI.cfl
2014-12-04 21:59:06 CDB5F68FD0E9E8827C99E0B77C2C628D 1078 ----a-w- C:\Windows\CMICNFGSTXII.INI.imi
2014-12-04 21:59:06 9E2C67E4A4ED9588F0C0CA664899DCC1 5277 ------w- C:\Windows\CMICNFGSTXII.INI.cfg
2014-12-04 21:59:04 A79563D75F2F9572AA964DE66B0611E2 505 ------w- C:\Windows\cmudaxp_STXII.ini
2014-11-19 23:09:21 3AA6D076E371EB7FCC22B85B8A1B53A9 36864 ------w- C:\Windows\Algouinstall.exe
2014-11-09 10:55:39 782C99F7241BC9ACE38CB5D7382DF9C7 479232 ----a-w- C:\Windows\ssndii.exe
2014-11-09 10:55:28 F6CAE25A0B2F38F536A9339A878E2ED1 11502 ------w- C:\Windows\Dr. Printer Icon.ico
2014-11-09 10:55:28 6E32354BEFF6EB30D620012098B50FD9 133757 ------w- C:\Windows\SmartCMS2.ico
2014-11-09 10:55:27 C048724563615DDE0471383910A6959E 5430 ------w- C:\Windows\AnyWeb Print.ico
====== C:\Users\Andrej\AppData\Local\Temp ====
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII64.sys
2014-12-04 21:58:49 E759DCE43D2E5E75812B0C7FA878CBB9 122880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsSrv64.dll
2014-12-04 21:58:49 D0202455E9140E0F8847F50B5F03FF8F 32768 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\cmudaxp_STXII.dll
2014-12-04 21:58:49 BEF1B23AD0BBF805F02FAA01EAE0AF4E 282112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr64.exe
2014-12-04 21:58:49 B8B44F6431C68171BB4B2380D238AC6F 315392 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\CmiFltr_STXII.dll
2014-12-04 21:58:49 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\VMixP8.dll
2014-12-04 21:58:49 8AC47B5D5A2521C194B9433B9A0159D6 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\Cmpaoxy.dll
2014-12-04 21:58:49 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII.sys
2014-12-04 21:58:49 1CB2F37F3A13FA1389ED068007D65693 212992 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsSrv.dll
2014-12-04 21:58:49 0740D338A42F7778760F2B0CB6DA5830 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr.exe
2014-12-04 21:58:49 06FB32873596CBB20E1DC83677940FAF 122880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\Cm_Oal.dll
2014-12-04 21:58:48 FF8A3980DD28515C69BB68D2D826C226 65536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv.exe
2014-12-04 21:58:48 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmeAuVist64.exe
2014-12-04 21:58:48 EAEB7D25A3FB2FA3F03E45213217123F 303104 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmiInstallResAll.dll
2014-12-04 21:58:48 B8A4DBEFA9BF89A4819944117F59FB88 57344 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv.dll
2014-12-04 21:58:48 B671FBB07949B628C46A6C21EB13B1EA 319968 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\DIFxAPI.dll
2014-12-04 21:58:48 A9A7478F7F414FB993959DC0FD3FBC63 221184 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmEnhance.exe
2014-12-04 21:58:48 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmEnhance.dll
2014-12-04 21:58:48 9CADC91DF349C198FFB5477A5B23B6C2 524768 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\difxapi64.dll
2014-12-04 21:58:48 9C23E8A586950345EE5DC8DA2A2583CF 303104 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\cmasioSTXII.dll
2014-12-04 21:58:48 759E35D5F9F47EFB1F9F7615CDC18D64 465408 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\cmasioSTXII64.dll
2014-12-04 21:58:48 713AD950BBBF5D5535611261DAB6857C 71168 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv64.exe
2014-12-04 21:58:48 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\OpenAL\openalweax.exe
2014-12-04 21:58:48 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\setup.exe
2014-12-04 21:58:48 19DBC03DE66F846A864EFACFEBF3A0AC 577536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmeAuVist.exe
2014-12-04 21:58:48 131E458A1812C124ABF14FA56675BE01 50688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv64.dll
2014-12-04 21:58:48 11BB3D5DC9336037C14A46873FA1FFDF 359424 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmiInstallResAll64.dll
2014-12-04 21:58:47 DCDE5A9372757A2739E811221066F0AD 580096 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\ISSetup.dll
2014-12-04 21:58:47 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\VMixP8.dll
2014-12-04 21:58:47 9F78E615E7B4F39235FC2E79CD7797FB 90112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\MXmon.exe
2014-12-04 21:58:46 FE79905C9DC7D28BEF84A6A160EBB8B0 10617 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResAra.dll
2014-12-04 21:58:46 F8D1C7EDAC2C6F28776BF218366C6F49 10523 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResKor.dll
2014-12-04 21:58:46 E73BDEFE312574F66544670E3E56E8D2 1261 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.dll
2014-12-04 21:58:46 E201FB916331DA0E09C4E91961052030 11653 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResPtg.dll
2014-12-04 21:58:46 C44EAFCED71FD018009F6511804C4A0A 10037 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResCht.dll
2014-12-04 21:58:46 BDEFB20331660EE6E97796285B956F47 11427 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDut.dll
2014-12-04 21:58:46 A6344A27A06D7EF994493CFD09D9DF4E 11284 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResTrk.dll
2014-12-04 21:58:46 A2165B8124181A8D066B359D53BE06A4 11626 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResIta.dll
2014-12-04 21:58:46 9E2C67E4A4ED9588F0C0CA664899DCC1 5277 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\CmiSetupConfig.dll
2014-12-04 21:58:46 96EB06B205CF7AE682575F689B46EE88 11264 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResInd.dll
2014-12-04 21:58:46 88911940B1E793799AB587F5A5B483ED 45056 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\CmUtil.dll
2014-12-04 21:58:46 845E44F8D52566B58A15917631BEC0B2 11670 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDeu.dll
2014-12-04 21:58:46 827FBAF2651A86354C6C3339C32B183F 9889 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResChs.dll
2014-12-04 21:58:46 65E97FB4533E3BC1E84388A29D0C8A9C 11837 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResFra.dll
2014-12-04 21:58:46 5AEB55419DE1CFDFAC593134906A803B 11354 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResRus.dll
2014-12-04 21:58:46 58B1ABE5F7CEDE482AF871AB796533EE 11051 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResSve.dll
2014-12-04 21:58:46 4D328694BB516E46D2D184950D94433F 1700352 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\GdiPlus.dll
2014-12-04 21:58:46 46CEEFE7799BADF31B669A58526E0CBD 10753 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResTha.dll
2014-12-04 21:58:46 3DE8B9A49B81962A9E8EFD6BE446F621 11815 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResEsp.dll
2014-12-04 21:58:46 339541B330ED943868FCC46E4205C130 430080 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\CmDeviceSTXII.dll
2014-12-04 21:58:46 293E52DEA9369FF2037391C174915DF9 62 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\CmSetx.dll
2014-12-04 21:58:46 1DB885E59E94700E0746502DB483ACE5 2162688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.exe
2014-12-04 21:58:46 123AC9BA04566BC5511EDC44FEC92CD5 11076 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResEnu.dll
2014-12-04 21:58:46 0C65BB7CF0831D745EE6CD9D99029600 11070 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResJpn.dll
2014-12-04 21:58:46 0278C818D272AC96B777C09E72603D82 10966 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDan.dll
2014-12-04 21:56:42 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII64.sys
2014-12-04 21:56:42 E759DCE43D2E5E75812B0C7FA878CBB9 122880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsSrv64.dll
2014-12-04 21:56:42 D0202455E9140E0F8847F50B5F03FF8F 32768 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\cmudaxp_STXII.dll
2014-12-04 21:56:42 BEF1B23AD0BBF805F02FAA01EAE0AF4E 282112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr64.exe
2014-12-04 21:56:42 B8B44F6431C68171BB4B2380D238AC6F 315392 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\CmiFltr_STXII.dll
2014-12-04 21:56:42 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\VMixP8.dll
2014-12-04 21:56:42 8AC47B5D5A2521C194B9433B9A0159D6 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\Cmpaoxy.dll
2014-12-04 21:56:42 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII.sys
2014-12-04 21:56:42 1CB2F37F3A13FA1389ED068007D65693 212992 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsSrv.dll
2014-12-04 21:56:42 0740D338A42F7778760F2B0CB6DA5830 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr.exe
2014-12-04 21:56:42 06FB32873596CBB20E1DC83677940FAF 122880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\Cm_Oal.dll
2014-12-04 21:56:41 FF8A3980DD28515C69BB68D2D826C226 65536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv.exe
2014-12-04 21:56:41 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmeAuVist64.exe
2014-12-04 21:56:41 EAEB7D25A3FB2FA3F03E45213217123F 303104 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmiInstallResAll.dll
2014-12-04 21:56:41 DCDE5A9372757A2739E811221066F0AD 580096 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\ISSetup.dll
2014-12-04 21:56:41 B8A4DBEFA9BF89A4819944117F59FB88 57344 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv.dll
2014-12-04 21:56:41 B671FBB07949B628C46A6C21EB13B1EA 319968 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\DIFxAPI.dll
2014-12-04 21:56:41 A9A7478F7F414FB993959DC0FD3FBC63 221184 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmEnhance.exe
2014-12-04 21:56:41 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmEnhance.dll
2014-12-04 21:56:41 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\VMixP8.dll
2014-12-04 21:56:41 9CADC91DF349C198FFB5477A5B23B6C2 524768 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\difxapi64.dll
2014-12-04 21:56:41 9C23E8A586950345EE5DC8DA2A2583CF 303104 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\cmasioSTXII.dll
2014-12-04 21:56:41 759E35D5F9F47EFB1F9F7615CDC18D64 465408 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\cmasioSTXII64.dll
2014-12-04 21:56:41 713AD950BBBF5D5535611261DAB6857C 71168 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv64.exe
2014-12-04 21:56:41 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\OpenAL\openalweax.exe
2014-12-04 21:56:41 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\setup.exe
2014-12-04 21:56:41 19DBC03DE66F846A864EFACFEBF3A0AC 577536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmeAuVist.exe
2014-12-04 21:56:41 131E458A1812C124ABF14FA56675BE01 50688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv64.dll
2014-12-04 21:56:41 11BB3D5DC9336037C14A46873FA1FFDF 359424 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmiInstallResAll64.dll
2014-12-04 21:56:40 FE79905C9DC7D28BEF84A6A160EBB8B0 10617 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResAra.dll
2014-12-04 21:56:40 F8D1C7EDAC2C6F28776BF218366C6F49 10523 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResKor.dll
2014-12-04 21:56:40 E201FB916331DA0E09C4E91961052030 11653 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResPtg.dll
2014-12-04 21:56:40 C44EAFCED71FD018009F6511804C4A0A 10037 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResCht.dll
2014-12-04 21:56:40 BDEFB20331660EE6E97796285B956F47 11427 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDut.dll
2014-12-04 21:56:40 A6344A27A06D7EF994493CFD09D9DF4E 11284 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResTrk.dll
2014-12-04 21:56:40 A2165B8124181A8D066B359D53BE06A4 11626 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResIta.dll
2014-12-04 21:56:40 9F78E615E7B4F39235FC2E79CD7797FB 90112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\MXmon.exe
2014-12-04 21:56:40 96EB06B205CF7AE682575F689B46EE88 11264 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResInd.dll
2014-12-04 21:56:40 845E44F8D52566B58A15917631BEC0B2 11670 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDeu.dll
2014-12-04 21:56:40 827FBAF2651A86354C6C3339C32B183F 9889 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResChs.dll
2014-12-04 21:56:40 65E97FB4533E3BC1E84388A29D0C8A9C 11837 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResFra.dll
2014-12-04 21:56:40 5AEB55419DE1CFDFAC593134906A803B 11354 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResRus.dll
2014-12-04 21:56:40 58B1ABE5F7CEDE482AF871AB796533EE 11051 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResSve.dll
2014-12-04 21:56:40 4D328694BB516E46D2D184950D94433F 1700352 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\GdiPlus.dll
2014-12-04 21:56:40 46CEEFE7799BADF31B669A58526E0CBD 10753 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResTha.dll
2014-12-04 21:56:40 3DE8B9A49B81962A9E8EFD6BE446F621 11815 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResEsp.dll
2014-12-04 21:56:40 339541B330ED943868FCC46E4205C130 430080 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\CmDeviceSTXII.dll
2014-12-04 21:56:40 123AC9BA04566BC5511EDC44FEC92CD5 11076 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResEnu.dll
2014-12-04 21:56:40 0C65BB7CF0831D745EE6CD9D99029600 11070 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResJpn.dll
2014-12-04 21:56:40 0278C818D272AC96B777C09E72603D82 10966 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDan.dll
2014-12-04 21:56:39 E73BDEFE312574F66544670E3E56E8D2 1261 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.dll
2014-12-04 21:56:39 9E2C67E4A4ED9588F0C0CA664899DCC1 5277 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\CmiSetupConfig.dll
2014-12-04 21:56:39 88911940B1E793799AB587F5A5B483ED 45056 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\CmUtil.dll
2014-12-04 21:56:39 293E52DEA9369FF2037391C174915DF9 62 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\CmSetx.dll
2014-12-04 21:56:39 1DB885E59E94700E0746502DB483ACE5 2162688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.exe
2014-12-03 10:54:45 CAAAC014C5C56A69F710B5F1B836DE22 1732032 ----a-w- C:\Users\Andrej\AppData\Local\Temp\dllnt_dump.dll
2014-12-03 10:50:34 E0DC8C6BBC787B972A9A468648DBFD85 1008128 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\libiconv2.dll
2014-12-03 10:50:34 D202BAA425176287017FFE1FB5D1B77C 103424 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\libintl3.dll
2014-12-03 10:50:34 57CAC848FA14AE38F14F9441F8933282 140288 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\pcre3.dll
2014-12-03 10:50:34 547C43567AB8C08EB30F6C6BACB479A3 79360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\regex2.dll
2014-12-03 10:50:34 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-12-04 21:59:16 A31EB8FF1492B63BDADA025D994C5B0D 143360 ------w- C:\Windows\SysWOW64\VmixP8.dll
2014-12-04 21:59:16 9C23E8A586950345EE5DC8DA2A2583CF 303104 ------w- C:\Windows\SysWOW64\cmasioSTXII.dll
2014-12-04 21:59:16 93025BD3FF15B401905F59125A873D89 54 ------w- C:\Windows\SysWOW64\cmasioSTXII.ini
2014-12-04 21:59:16 8AC47B5D5A2521C194B9433B9A0159D6 200704 ------w- C:\Windows\SysWOW64\Cmpaoxy.dll
2014-12-04 21:59:16 06FB32873596CBB20E1DC83677940FAF 122880 ------w- C:\Windows\SysWOW64\Cm_Oal.dll
2014-12-04 21:59:16 004D68BBA5D9D14263E6342915D7B5FF 13463552 ------w- C:\Windows\SysWOW64\CmiCnfgSTXII.dll
2014-12-04 21:58:49 B8B44F6431C68171BB4B2380D238AC6F 315392 ----a-w- C:\Windows\SysWOW64\CmiFltr_STXII.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-12-04 21:59:16 EF1709419A75A60A5F6271B3DF48EBEF 58 ------w- C:\Windows\Sysnative\cmasioSTXII64.ini
2014-12-04 21:59:16 D33BF3026827B84A3425C0B6CCBF4381 4650496 ------w- C:\Windows\Sysnative\CmiCnfgSTXII.cpl
2014-12-04 21:59:16 759E35D5F9F47EFB1F9F7615CDC18D64 465408 ------w- C:\Windows\Sysnative\cmasioSTXII64.dll
2014-12-04 21:59:16 06FB32873596CBB20E1DC83677940FAF 122880 ------w- C:\Windows\Sysnative\Cm_Oal.dll
2014-12-04 21:59:14 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ------w- C:\Windows\Sysnative\cmeauASUSSTX2.exe
2014-12-04 21:59:06 11BB3D5DC9336037C14A46873FA1FFDF 359424 ------w- C:\Windows\Sysnative\CmiInstallResAll64.dll
2014-12-04 21:58:49 D0202455E9140E0F8847F50B5F03FF8F 32768 ----a-w- C:\Windows\Sysnative\cmudaxp_STXII.dll
====== C:\Windows\Sysnative\drivers =====
2014-12-05 15:14:53 FEF60A37301E1F5A3020FA3487FB2CD7 129600 ----a-w- C:\Windows\Sysnative\drivers\rzpnk.sys
2014-12-05 15:14:46 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\Sysnative\drivers\rzpmgrk.sys
2014-12-05 15:14:41 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_rzudd_01009.Wdf
2014-12-05 15:14:27 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_rzdaendpt_01009.Wdf
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Windows\Sysnative\drivers\STXII.sys
2014-12-03 10:54:45 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\Sysnative\drivers\TrueSight.sys
2014-12-01 20:27:19 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-12-01 20:26:08 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-12-01 20:26:08 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-12-01 20:26:08 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-11-12 20:43:07 41774FF331F609EF442B7398EE6202B1 155064 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-11-09 10:54:01 2D589A2C024B2FB238535DB9F7B3597D 53816 ------w- C:\Windows\Sysnative\drivers\DGIVECP.SYS
2014-11-09 10:54:01 0211AB46B73A2623B86C1CFCB30579AB 11576 ------w- C:\Windows\Sysnative\drivers\SSPORT.SYS
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-12-04 21:59:15 -------- d-----w- C:\Program Files\ASUS Essence STX II Audio Device
======= C:\PROGRA~2 =====
2014-12-03 11:05:02 -------- d-----w- C:\PROGRA~2\CrystalDiskInfo
2014-11-24 23:10:28 -------- d-----w- C:\PROGRA~2\ASIO4ALL v2
2014-11-24 23:07:42 -------- d-----w- C:\PROGRA~2\Algorithmix
2014-11-24 22:53:47 -------- d-----w- C:\PROGRA~2\foobar2000
2014-11-19 10:03:57 -------- d-----w- C:\PROGRA~2\Diablo III Public Test
2014-11-17 15:51:05 -------- d-----w- C:\PROGRA~2\Heroes of the Storm
2014-11-09 10:55:37 -------- d-----w- C:\PROGRA~2\SamsungPrinterLiveUpdate
2014-11-09 10:53:59 -------- d-----w- C:\PROGRA~2\Samsung
======= C: =====
====== C:\Users\Andrej\AppData\Roaming ======
2014-12-05 15:17:53 -------- d-----w- C:\Users\Andrej\AppData\Local\Razer
2014-12-05 15:12:56 C69B449891A00BDD425F63A011E390F3 64512 ----a-w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-05 15:12:56 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Razer
2014-12-04 21:59:20 -------- d-----w- C:\Users\Andrej\AppData\Roaming\ASUS
2014-12-01 10:54:50 -------- d-----w- C:\Users\Andrej\AppData\Local\ElevatedDiagnostics
2014-11-24 22:53:53 -------- d-----w- C:\Users\Andrej\AppData\Roaming\foobar2000
2014-11-15 20:41:04 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google
====== C:\Users\Andrej ======
2014-12-05 15:13:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-12-04 21:59:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Essence STX II Audio Device
2014-12-03 11:05:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2014-12-03 11:04:15 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Andrej\Desktop\CrystalDiskInfo6_2_1-en.exe
2014-12-03 10:54:34 -------- d-----w- C:\ProgramData\RogueKiller
2014-12-03 10:53:38 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Andrej\Desktop\RogueKillerX64.exe
2014-12-03 10:49:10 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Andrej\Desktop\JRT.exe
2014-12-01 20:34:54 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025 (1).exe
2014-12-01 20:25:04 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025.exe
2014-12-01 20:15:04 CBDDB6C4BCD895F8879FD6AC588007A0 2154496 ----a-w- C:\Users\Andrej\Downloads\adwcleaner_4.103.exe
2014-12-01 20:10:37 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Andrej\Downloads\TFC.exe
2014-12-01 11:09:25 9BA95EF91A20B16E2E21FC67FB4616DC 36363264 ------w- C:\Users\Andrej\Downloads\prime95.exe
2014-11-24 23:07:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Algorithmix
2014-11-24 22:53:25 C6EC330051A8C5F0FB40E28F28CF0FB3 3828176 ----a-w- C:\Users\Andrej\Downloads\foobar2000_v1.3.5.exe
2014-11-19 10:03:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III Public Test
2014-11-17 15:53:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2014-11-09 10:55:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung ML-1640 Series
====== C: exe-files ==
2014-12-05 15:14:55 7D171AB4D34A46CB28D609932FC88916 46311 ----a-w- C:\ProgramData\Razer\Synapse\RzStats\Uninstall\Uninstall.exe
2014-12-05 15:14:55 7D171AB4D34A46CB28D609932FC88916 46311 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RzStats\Razer_RzStats_Uninstall.exe
2014-12-05 15:14:45 E3C7434584E93D91670C23823A50EEF9 32933 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerDeathAdder3500Config\RazerDeathAdder3500Config_Uninstaller.exe
2014-12-05 15:14:44 6A351CB7A1390B4E79E37E54D15C01EE 46399 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\Razer_Common_Driver\RazerCommonDriverUninstaller.exe
2014-12-05 15:14:14 58FC3B75B3833BD347D2D090F4374110 157528 ----a-w- C:\Windows\Temp\RzUpdater\CompressionExtraction\RzSettingsConverter.exe
2014-12-05 15:14:12 FF49B47515BBA03510BE96F8B6B11D0F 32206 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerFonts\RazerFonts_Uninstaller.exe
2014-12-05 15:14:08 FAD602BA174AE11A309575A0D6D049EB 33036 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerCommonConfig\RazerCommonConfig_Uninstaller.exe
2014-12-05 15:13:43 68AC740D528300C29CDD9E07C8C62236 3780112 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_RzStats_v1.01.32.exe
2014-12-05 15:13:40 AEFBEF7DD47CF63E648A4342750DEB61 26202488 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_InGame_Engine_v1.0.12.3915.exe
2014-12-05 15:13:38 EF8204E24F1103AB4BAA17A28D3632D6 6321512 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\RzGSS_Setup_v1.0.6.2565.exe
2014-12-05 15:13:32 67D1E028B6B24AACCACD9582BA1E407C 9243680 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_DeathAdder3500_Config_v1.11.01.exe
2014-12-05 15:13:27 5077C0E75A43546B66CCCDEC0FF0070D 7402320 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_Common_Driver_v1.29.03.exe
2014-12-05 15:13:18 CA7FB5ED3639B8BE2F395D1D6AB66B24 10897408 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_CommonConfigInstaller_v2.36.02.exe
2014-12-05 15:13:12 F85BBDA1E03586F64E60C29F45E4DB90 11669848 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_SynapseFonts_v1.00.01.exe
2014-12-05 14:50:24 977AF0E4BAB67F44EF2C530D30261507 47365168 ----a-w- C:\Program Files (x86)\Heroes of the Storm\Versions\Base33182\HeroesOfTheStorm_x64.exe
2014-12-05 14:50:06 7BBA91D9FA1AA10F9A8F7ED93A2FE764 48322608 ----a-w- C:\Program Files (x86)\Heroes of the Storm\Versions\Base33182\HeroesOfTheStorm.exe
2014-12-05 14:48:59 ABCE2E20DA5CF94C5EEBF436DBF28681 10001968 ----a-w- C:\Program Files (x86)\Battle.net\Battle.net.5325\Battle.net.exe
2014-12-04 21:59:25 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{1A01B996-F7F7-473C-9EA4-B22801713A83}\setup.exe
2014-12-04 21:59:16 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ------w- C:\Program Files\ASUS Essence STX II Audio Device\OpenAL\openalweax.exe
2014-12-04 21:59:15 9F78E615E7B4F39235FC2E79CD7797FB 90112 ------w- C:\Program Files\ASUS Essence STX II Audio Device\Customapp\MXmon.exe
2014-12-04 21:59:15 1DB885E59E94700E0746502DB483ACE5 2162688 ------w- C:\Program Files\ASUS Essence STX II Audio Device\Customapp\AsusAudioCenter.exe
2014-12-04 21:59:14 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ------w- C:\Windows\System32\cmeauASUSSTX2.exe
2014-12-04 21:58:49 BEF1B23AD0BBF805F02FAA01EAE0AF4E 282112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr64.exe
2014-12-04 21:58:49 0740D338A42F7778760F2B0CB6DA5830 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr.exe
2014-12-04 21:58:48 FF8A3980DD28515C69BB68D2D826C226 65536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv.exe
2014-12-04 21:58:48 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmeAuVist64.exe
2014-12-04 21:58:48 A9A7478F7F414FB993959DC0FD3FBC63 221184 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmEnhance.exe
2014-12-04 21:58:48 713AD950BBBF5D5535611261DAB6857C 71168 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv64.exe
2014-12-04 21:58:48 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\OpenAL\openalweax.exe
2014-12-04 21:58:48 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\setup.exe
2014-12-04 21:58:48 19DBC03DE66F846A864EFACFEBF3A0AC 577536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmeAuVist.exe
2014-12-04 21:58:47 9F78E615E7B4F39235FC2E79CD7797FB 90112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\MXmon.exe
2014-12-04 21:58:46 1DB885E59E94700E0746502DB483ACE5 2162688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.exe
2014-12-04 21:56:42 BEF1B23AD0BBF805F02FAA01EAE0AF4E 282112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr64.exe
2014-12-04 21:56:42 0740D338A42F7778760F2B0CB6DA5830 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr.exe
2014-12-04 21:56:41 FF8A3980DD28515C69BB68D2D826C226 65536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv.exe
2014-12-04 21:56:41 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmeAuVist64.exe
2014-12-04 21:56:41 A9A7478F7F414FB993959DC0FD3FBC63 221184 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmEnhance.exe
2014-12-04 21:56:41 713AD950BBBF5D5535611261DAB6857C 71168 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv64.exe
2014-12-04 21:56:41 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\OpenAL\openalweax.exe
2014-12-04 21:56:41 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\setup.exe
2014-12-04 21:56:41 19DBC03DE66F846A864EFACFEBF3A0AC 577536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmeAuVist.exe
2014-12-04 21:56:40 9F78E615E7B4F39235FC2E79CD7797FB 90112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\MXmon.exe
2014-12-04 21:56:39 1DB885E59E94700E0746502DB483ACE5 2162688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.exe
2014-12-03 11:05:03 D5F72F1D98858A34405211851558C9CE 2385016 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\DiskInfo.exe
2014-12-03 11:05:03 732529DB7C29A7E9C5A95DA93ACAA7DA 61048 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail.exe
2014-12-03 11:05:03 4A3A4B20168FC1C91E609E47304EFC0C 683104 ----a-w- C:\Users\Andrej\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N4UA57I3\Opera_NI_stable[1].exe
2014-12-03 11:05:03 1F3CF9F2EDA491E461A44D956033D7FF 178688 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\opus\opusdec.exe
2014-12-03 11:05:03 13EDEEF3C1B499A33CB5C9192E2FF881 61560 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail4.exe
2014-12-03 11:05:02 51615B07FEE5FD3BD24700305FC7875E 1270515 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\unins000.exe
2014-12-03 11:04:15 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Andrej\Desktop\CrystalDiskInfo6_2_1-en.exe
2014-12-03 10:53:38 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Andrej\Desktop\RogueKillerX64.exe
2014-12-03 10:50:34 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
2014-12-03 10:49:10 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Andrej\Desktop\JRT.exe
2014-12-01 20:34:54 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025 (1).exe
2014-12-01 20:25:04 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025.exe
2014-12-01 20:15:04 CBDDB6C4BCD895F8879FD6AC588007A0 2154496 ----a-w- C:\Users\Andrej\Downloads\adwcleaner_4.103.exe
2014-12-01 20:10:37 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Andrej\Downloads\TFC.exe
2014-12-01 13:51:54 D4CC8C7863F354C19B046E36DDB6EFAC 98816 ----a-w- C:\Users\Andrej\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost64.exe
2014-12-01 13:51:54 BAB0D4BE626569124A28655FC6789DD2 87552 ----a-w- C:\Users\Andrej\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost32.exe
2014-12-01 11:09:25 9BA95EF91A20B16E2E21FC67FB4616DC 36363264 ------w- C:\Users\Andrej\Downloads\prime95.exe
=== C: other files ==
2014-12-05 15:14:53 FEF60A37301E1F5A3020FA3487FB2CD7 129600 ----a-w- C:\Windows\System32\drivers\rzpnk.sys
2014-12-05 15:14:46 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\System32\drivers\rzpmgrk.sys
2014-12-05 15:13:27 7E10FA2E72CBBBED17197ADCC92E1CE9 359836 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_DA3500Converter_v2.00.01_1.zip
2014-12-04 21:59:16 EDD288D69C3F9739832F162F28532781 2736640 ------w- C:\Program Files\ASUS Essence STX II Audio Device\driver\STXII64.sys
2014-12-04 21:59:16 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ------w- C:\Program Files\ASUS Essence STX II Audio Device\driver\STXII.sys
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Windows\System32\drivers\STXII.sys
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII64.sys
2014-12-04 21:58:49 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII.sys
2014-12-04 21:56:42 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII64.sys
2014-12-04 21:56:42 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII.sys
2014-12-04 21:56:23 86B18A1D25D08DC93F19213A86F8785E 18945108 ----a-w- C:\Users\Andrej\Downloads\STX_II_7_0_11_5_Win7 (1).zip
2014-12-03 10:54:45 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\System32\drivers\TrueSight.sys
2014-12-03 10:50:34 F56A319979F631C141F5FF02DF87FDB1 43563 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\prelim.bat
2014-12-03 10:50:34 EBAA7BD799FC68980A6A8594BB14A950 190569 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\misc.bat
2014-12-03 10:50:34 DD1E4D974B1672ABD09EFFB225791C4A 1230 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\TDL4.bat
2014-12-03 10:50:34 BC28D90D34DB7AC6BB5789BF3C9E8FDB 14957 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\get.bat
2014-12-03 10:50:34 AD2F52DC72B10AF331692E4A4DD80DFC 18670 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\medfos.bat
2014-12-03 10:50:34 AA0C656F898523BEDF2DA6923197BB80 1264 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\surfvox.bat
2014-12-03 10:50:34 8E6020C14F982CF11B3FE7DBB0CB8EDE 24738 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\searchlnk.bat
2014-12-03 10:50:34 86707BCE5CBB65D9B1C41E249B4423BA 152733 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\firefox.bat
2014-12-03 10:50:34 83F691D8398F0E37E71E9355BF730DB9 719 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\ev_clear.bat
2014-12-03 10:50:34 813FA9E2180EE3BB5EFCE744009B5611 10880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\runvalues.bat
2014-12-03 10:50:34 38A0BDF322ACCC968B0A824C38D50157 29635 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\ask.bat
2014-12-03 10:50:34 335DFF8F23E5EC02B5426362F0F8509B 31401 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\iexplore.bat
2014-12-03 10:50:34 0C4649A62845AB5D5DBCC4998477FF6D 1813 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\delfolders.bat
2014-12-03 10:50:34 080CFDE64F31E7B50EECF4552033E84D 9937 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\mws.bat
2014-12-03 10:50:34 048407135C9B1FB6A355E256BD96160D 14192 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\chrome.bat
2014-12-01 20:27:19 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-01 20:26:08 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-01 20:26:08 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-01 20:26:08 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-01 14:17:44 70F89D8E1EFC67315573A52E755218A4 540920 ----a-w- C:\Users\Andrej\Downloads\foo_dynamic_range_1.1.1.zip
2014-12-01 13:57:27 70F89D8E1EFC67315573A52E755218A4 540920 ----a-w- C:\Users\Andrej\Desktop\Nový priečinok\foo_dynamic_range_1.1.1.zip
2014-12-01 11:09:00 4C155D4AD8B9C4215A4814B66E9037F1 5378177 ----a-w- C:\Users\Andrej\Downloads\p95v285.win64.zip
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-21-2347622384-2809294876-4271719555-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"ACSW16EN"="C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe"
"RIMBBLaunchAgent.exe"="C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"
"RIM PeerManager"="C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
"Samsung PanelMgr"="C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun"
"Razer Synapse"="C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe"
"Cmaudio8788"="C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CmiCnfgSTXII.dll,CMICtrlWnd"
"Cmaudio8788GX"="C:\Windows\syswow64\HsMgr.exe Envoke"
"Cmaudio8788GX64"="C:\Windows\system\HsMgr64.exe Envoke"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21. 10. 2014 14:35]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21. 10. 2014 14:35]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Start Corsair Link" ["C:\Program Files (x86)\Corsair\Corsair Link\CorsairLINK.exe"]
"C:\Windows\SysNative\tasks\ASUS\i-Setup144110" [C:\Windows\AMD_Chipset_Win7_V307320\AsusSetup.exe]
"C:\Windows\SysNative\tasks\ASUS\i-Setup153920" [C:\Windows\AMD_Chipset_V307320_Windows7\AsusSetup.exe]
==== Chromium Look ======================
Google Slides - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
AdBlock - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
BB10 / PlayBook App Manager - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmbaalodpmjjhpobkgljnelbpblnikkp
Google Wallet - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Andrej\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Andrej\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=16 folders=18 14785013 bytes)
==== Empty Temp Folders ======================
C:\Users\Andrej\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Andrej\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on pi 05. 12. 2014 at 16:51:13,12 ======================
Tool run by Andrej on pi 05. 12. 2014 at 16:38:16,50.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Andrej\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean]
==== System Restore Info ======================
5. 12. 2014 16:40:28 Zoek.exe System Restore Point Created Succesfully.
==== Empty Folders Check ======================
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Users\Andrej\AppData\Roaming\XCPCSync.OEM deleted successfully
C:\Users\Andrej\AppData\Local\VirtualStore deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\Users\Andrej\AppData\Roaming\OpenCandy deleted
C:\PROGRA~3\Package Cache deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2014-12-04 21:59:16 B1CA646A688C9DD1F899A776157C14D7 456414 ------w- C:\Windows\asusstx2.ico
2014-12-04 21:59:16 9F009D41E2577BA3D50D6EB37E866422 1144983 ------w- C:\Windows\KB936225x64.msu
2014-12-04 21:59:15 FC286821DB02A1D3B571BFD356CB7159 51164 ----a-w- C:\Windows\CMICNFGSTXII.INI.cfl
2014-12-04 21:59:06 CDB5F68FD0E9E8827C99E0B77C2C628D 1078 ----a-w- C:\Windows\CMICNFGSTXII.INI.imi
2014-12-04 21:59:06 9E2C67E4A4ED9588F0C0CA664899DCC1 5277 ------w- C:\Windows\CMICNFGSTXII.INI.cfg
2014-12-04 21:59:04 A79563D75F2F9572AA964DE66B0611E2 505 ------w- C:\Windows\cmudaxp_STXII.ini
2014-11-19 23:09:21 3AA6D076E371EB7FCC22B85B8A1B53A9 36864 ------w- C:\Windows\Algouinstall.exe
2014-11-09 10:55:39 782C99F7241BC9ACE38CB5D7382DF9C7 479232 ----a-w- C:\Windows\ssndii.exe
2014-11-09 10:55:28 F6CAE25A0B2F38F536A9339A878E2ED1 11502 ------w- C:\Windows\Dr. Printer Icon.ico
2014-11-09 10:55:28 6E32354BEFF6EB30D620012098B50FD9 133757 ------w- C:\Windows\SmartCMS2.ico
2014-11-09 10:55:27 C048724563615DDE0471383910A6959E 5430 ------w- C:\Windows\AnyWeb Print.ico
====== C:\Users\Andrej\AppData\Local\Temp ====
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII64.sys
2014-12-04 21:58:49 E759DCE43D2E5E75812B0C7FA878CBB9 122880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsSrv64.dll
2014-12-04 21:58:49 D0202455E9140E0F8847F50B5F03FF8F 32768 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\cmudaxp_STXII.dll
2014-12-04 21:58:49 BEF1B23AD0BBF805F02FAA01EAE0AF4E 282112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr64.exe
2014-12-04 21:58:49 B8B44F6431C68171BB4B2380D238AC6F 315392 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\CmiFltr_STXII.dll
2014-12-04 21:58:49 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\VMixP8.dll
2014-12-04 21:58:49 8AC47B5D5A2521C194B9433B9A0159D6 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\Cmpaoxy.dll
2014-12-04 21:58:49 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII.sys
2014-12-04 21:58:49 1CB2F37F3A13FA1389ED068007D65693 212992 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsSrv.dll
2014-12-04 21:58:49 0740D338A42F7778760F2B0CB6DA5830 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr.exe
2014-12-04 21:58:49 06FB32873596CBB20E1DC83677940FAF 122880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\Cm_Oal.dll
2014-12-04 21:58:48 FF8A3980DD28515C69BB68D2D826C226 65536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv.exe
2014-12-04 21:58:48 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmeAuVist64.exe
2014-12-04 21:58:48 EAEB7D25A3FB2FA3F03E45213217123F 303104 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmiInstallResAll.dll
2014-12-04 21:58:48 B8A4DBEFA9BF89A4819944117F59FB88 57344 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv.dll
2014-12-04 21:58:48 B671FBB07949B628C46A6C21EB13B1EA 319968 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\DIFxAPI.dll
2014-12-04 21:58:48 A9A7478F7F414FB993959DC0FD3FBC63 221184 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmEnhance.exe
2014-12-04 21:58:48 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmEnhance.dll
2014-12-04 21:58:48 9CADC91DF349C198FFB5477A5B23B6C2 524768 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\difxapi64.dll
2014-12-04 21:58:48 9C23E8A586950345EE5DC8DA2A2583CF 303104 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\cmasioSTXII.dll
2014-12-04 21:58:48 759E35D5F9F47EFB1F9F7615CDC18D64 465408 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\cmasioSTXII64.dll
2014-12-04 21:58:48 713AD950BBBF5D5535611261DAB6857C 71168 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv64.exe
2014-12-04 21:58:48 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\OpenAL\openalweax.exe
2014-12-04 21:58:48 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\setup.exe
2014-12-04 21:58:48 19DBC03DE66F846A864EFACFEBF3A0AC 577536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmeAuVist.exe
2014-12-04 21:58:48 131E458A1812C124ABF14FA56675BE01 50688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv64.dll
2014-12-04 21:58:48 11BB3D5DC9336037C14A46873FA1FFDF 359424 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmiInstallResAll64.dll
2014-12-04 21:58:47 DCDE5A9372757A2739E811221066F0AD 580096 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\ISSetup.dll
2014-12-04 21:58:47 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\VMixP8.dll
2014-12-04 21:58:47 9F78E615E7B4F39235FC2E79CD7797FB 90112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\MXmon.exe
2014-12-04 21:58:46 FE79905C9DC7D28BEF84A6A160EBB8B0 10617 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResAra.dll
2014-12-04 21:58:46 F8D1C7EDAC2C6F28776BF218366C6F49 10523 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResKor.dll
2014-12-04 21:58:46 E73BDEFE312574F66544670E3E56E8D2 1261 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.dll
2014-12-04 21:58:46 E201FB916331DA0E09C4E91961052030 11653 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResPtg.dll
2014-12-04 21:58:46 C44EAFCED71FD018009F6511804C4A0A 10037 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResCht.dll
2014-12-04 21:58:46 BDEFB20331660EE6E97796285B956F47 11427 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDut.dll
2014-12-04 21:58:46 A6344A27A06D7EF994493CFD09D9DF4E 11284 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResTrk.dll
2014-12-04 21:58:46 A2165B8124181A8D066B359D53BE06A4 11626 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResIta.dll
2014-12-04 21:58:46 9E2C67E4A4ED9588F0C0CA664899DCC1 5277 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\CmiSetupConfig.dll
2014-12-04 21:58:46 96EB06B205CF7AE682575F689B46EE88 11264 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResInd.dll
2014-12-04 21:58:46 88911940B1E793799AB587F5A5B483ED 45056 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\CmUtil.dll
2014-12-04 21:58:46 845E44F8D52566B58A15917631BEC0B2 11670 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDeu.dll
2014-12-04 21:58:46 827FBAF2651A86354C6C3339C32B183F 9889 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResChs.dll
2014-12-04 21:58:46 65E97FB4533E3BC1E84388A29D0C8A9C 11837 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResFra.dll
2014-12-04 21:58:46 5AEB55419DE1CFDFAC593134906A803B 11354 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResRus.dll
2014-12-04 21:58:46 58B1ABE5F7CEDE482AF871AB796533EE 11051 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResSve.dll
2014-12-04 21:58:46 4D328694BB516E46D2D184950D94433F 1700352 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\GdiPlus.dll
2014-12-04 21:58:46 46CEEFE7799BADF31B669A58526E0CBD 10753 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResTha.dll
2014-12-04 21:58:46 3DE8B9A49B81962A9E8EFD6BE446F621 11815 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResEsp.dll
2014-12-04 21:58:46 339541B330ED943868FCC46E4205C130 430080 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\CmDeviceSTXII.dll
2014-12-04 21:58:46 293E52DEA9369FF2037391C174915DF9 62 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\CmSetx.dll
2014-12-04 21:58:46 1DB885E59E94700E0746502DB483ACE5 2162688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.exe
2014-12-04 21:58:46 123AC9BA04566BC5511EDC44FEC92CD5 11076 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResEnu.dll
2014-12-04 21:58:46 0C65BB7CF0831D745EE6CD9D99029600 11070 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResJpn.dll
2014-12-04 21:58:46 0278C818D272AC96B777C09E72603D82 10966 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDan.dll
2014-12-04 21:56:42 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII64.sys
2014-12-04 21:56:42 E759DCE43D2E5E75812B0C7FA878CBB9 122880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsSrv64.dll
2014-12-04 21:56:42 D0202455E9140E0F8847F50B5F03FF8F 32768 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\cmudaxp_STXII.dll
2014-12-04 21:56:42 BEF1B23AD0BBF805F02FAA01EAE0AF4E 282112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr64.exe
2014-12-04 21:56:42 B8B44F6431C68171BB4B2380D238AC6F 315392 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\CmiFltr_STXII.dll
2014-12-04 21:56:42 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\VMixP8.dll
2014-12-04 21:56:42 8AC47B5D5A2521C194B9433B9A0159D6 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\Cmpaoxy.dll
2014-12-04 21:56:42 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII.sys
2014-12-04 21:56:42 1CB2F37F3A13FA1389ED068007D65693 212992 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsSrv.dll
2014-12-04 21:56:42 0740D338A42F7778760F2B0CB6DA5830 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr.exe
2014-12-04 21:56:42 06FB32873596CBB20E1DC83677940FAF 122880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\Cm_Oal.dll
2014-12-04 21:56:41 FF8A3980DD28515C69BB68D2D826C226 65536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv.exe
2014-12-04 21:56:41 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmeAuVist64.exe
2014-12-04 21:56:41 EAEB7D25A3FB2FA3F03E45213217123F 303104 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmiInstallResAll.dll
2014-12-04 21:56:41 DCDE5A9372757A2739E811221066F0AD 580096 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\ISSetup.dll
2014-12-04 21:56:41 B8A4DBEFA9BF89A4819944117F59FB88 57344 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv.dll
2014-12-04 21:56:41 B671FBB07949B628C46A6C21EB13B1EA 319968 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\DIFxAPI.dll
2014-12-04 21:56:41 A9A7478F7F414FB993959DC0FD3FBC63 221184 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmEnhance.exe
2014-12-04 21:56:41 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmEnhance.dll
2014-12-04 21:56:41 A31EB8FF1492B63BDADA025D994C5B0D 143360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\VMixP8.dll
2014-12-04 21:56:41 9CADC91DF349C198FFB5477A5B23B6C2 524768 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\difxapi64.dll
2014-12-04 21:56:41 9C23E8A586950345EE5DC8DA2A2583CF 303104 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\cmasioSTXII.dll
2014-12-04 21:56:41 759E35D5F9F47EFB1F9F7615CDC18D64 465408 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\cmasioSTXII64.dll
2014-12-04 21:56:41 713AD950BBBF5D5535611261DAB6857C 71168 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv64.exe
2014-12-04 21:56:41 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\OpenAL\openalweax.exe
2014-12-04 21:56:41 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\setup.exe
2014-12-04 21:56:41 19DBC03DE66F846A864EFACFEBF3A0AC 577536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmeAuVist.exe
2014-12-04 21:56:41 131E458A1812C124ABF14FA56675BE01 50688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv64.dll
2014-12-04 21:56:41 11BB3D5DC9336037C14A46873FA1FFDF 359424 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmiInstallResAll64.dll
2014-12-04 21:56:40 FE79905C9DC7D28BEF84A6A160EBB8B0 10617 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResAra.dll
2014-12-04 21:56:40 F8D1C7EDAC2C6F28776BF218366C6F49 10523 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResKor.dll
2014-12-04 21:56:40 E201FB916331DA0E09C4E91961052030 11653 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResPtg.dll
2014-12-04 21:56:40 C44EAFCED71FD018009F6511804C4A0A 10037 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResCht.dll
2014-12-04 21:56:40 BDEFB20331660EE6E97796285B956F47 11427 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDut.dll
2014-12-04 21:56:40 A6344A27A06D7EF994493CFD09D9DF4E 11284 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResTrk.dll
2014-12-04 21:56:40 A2165B8124181A8D066B359D53BE06A4 11626 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResIta.dll
2014-12-04 21:56:40 9F78E615E7B4F39235FC2E79CD7797FB 90112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\MXmon.exe
2014-12-04 21:56:40 96EB06B205CF7AE682575F689B46EE88 11264 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResInd.dll
2014-12-04 21:56:40 845E44F8D52566B58A15917631BEC0B2 11670 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDeu.dll
2014-12-04 21:56:40 827FBAF2651A86354C6C3339C32B183F 9889 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResChs.dll
2014-12-04 21:56:40 65E97FB4533E3BC1E84388A29D0C8A9C 11837 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResFra.dll
2014-12-04 21:56:40 5AEB55419DE1CFDFAC593134906A803B 11354 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResRus.dll
2014-12-04 21:56:40 58B1ABE5F7CEDE482AF871AB796533EE 11051 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResSve.dll
2014-12-04 21:56:40 4D328694BB516E46D2D184950D94433F 1700352 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\GdiPlus.dll
2014-12-04 21:56:40 46CEEFE7799BADF31B669A58526E0CBD 10753 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResTha.dll
2014-12-04 21:56:40 3DE8B9A49B81962A9E8EFD6BE446F621 11815 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResEsp.dll
2014-12-04 21:56:40 339541B330ED943868FCC46E4205C130 430080 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\CmDeviceSTXII.dll
2014-12-04 21:56:40 123AC9BA04566BC5511EDC44FEC92CD5 11076 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResEnu.dll
2014-12-04 21:56:40 0C65BB7CF0831D745EE6CD9D99029600 11070 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResJpn.dll
2014-12-04 21:56:40 0278C818D272AC96B777C09E72603D82 10966 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenterResDan.dll
2014-12-04 21:56:39 E73BDEFE312574F66544670E3E56E8D2 1261 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.dll
2014-12-04 21:56:39 9E2C67E4A4ED9588F0C0CA664899DCC1 5277 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\CmiSetupConfig.dll
2014-12-04 21:56:39 88911940B1E793799AB587F5A5B483ED 45056 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\CmUtil.dll
2014-12-04 21:56:39 293E52DEA9369FF2037391C174915DF9 62 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\CmSetx.dll
2014-12-04 21:56:39 1DB885E59E94700E0746502DB483ACE5 2162688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.exe
2014-12-03 10:54:45 CAAAC014C5C56A69F710B5F1B836DE22 1732032 ----a-w- C:\Users\Andrej\AppData\Local\Temp\dllnt_dump.dll
2014-12-03 10:50:34 E0DC8C6BBC787B972A9A468648DBFD85 1008128 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\libiconv2.dll
2014-12-03 10:50:34 D202BAA425176287017FFE1FB5D1B77C 103424 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\libintl3.dll
2014-12-03 10:50:34 57CAC848FA14AE38F14F9441F8933282 140288 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\pcre3.dll
2014-12-03 10:50:34 547C43567AB8C08EB30F6C6BACB479A3 79360 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\regex2.dll
2014-12-03 10:50:34 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-12-04 21:59:16 A31EB8FF1492B63BDADA025D994C5B0D 143360 ------w- C:\Windows\SysWOW64\VmixP8.dll
2014-12-04 21:59:16 9C23E8A586950345EE5DC8DA2A2583CF 303104 ------w- C:\Windows\SysWOW64\cmasioSTXII.dll
2014-12-04 21:59:16 93025BD3FF15B401905F59125A873D89 54 ------w- C:\Windows\SysWOW64\cmasioSTXII.ini
2014-12-04 21:59:16 8AC47B5D5A2521C194B9433B9A0159D6 200704 ------w- C:\Windows\SysWOW64\Cmpaoxy.dll
2014-12-04 21:59:16 06FB32873596CBB20E1DC83677940FAF 122880 ------w- C:\Windows\SysWOW64\Cm_Oal.dll
2014-12-04 21:59:16 004D68BBA5D9D14263E6342915D7B5FF 13463552 ------w- C:\Windows\SysWOW64\CmiCnfgSTXII.dll
2014-12-04 21:58:49 B8B44F6431C68171BB4B2380D238AC6F 315392 ----a-w- C:\Windows\SysWOW64\CmiFltr_STXII.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-12-04 21:59:16 EF1709419A75A60A5F6271B3DF48EBEF 58 ------w- C:\Windows\Sysnative\cmasioSTXII64.ini
2014-12-04 21:59:16 D33BF3026827B84A3425C0B6CCBF4381 4650496 ------w- C:\Windows\Sysnative\CmiCnfgSTXII.cpl
2014-12-04 21:59:16 759E35D5F9F47EFB1F9F7615CDC18D64 465408 ------w- C:\Windows\Sysnative\cmasioSTXII64.dll
2014-12-04 21:59:16 06FB32873596CBB20E1DC83677940FAF 122880 ------w- C:\Windows\Sysnative\Cm_Oal.dll
2014-12-04 21:59:14 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ------w- C:\Windows\Sysnative\cmeauASUSSTX2.exe
2014-12-04 21:59:06 11BB3D5DC9336037C14A46873FA1FFDF 359424 ------w- C:\Windows\Sysnative\CmiInstallResAll64.dll
2014-12-04 21:58:49 D0202455E9140E0F8847F50B5F03FF8F 32768 ----a-w- C:\Windows\Sysnative\cmudaxp_STXII.dll
====== C:\Windows\Sysnative\drivers =====
2014-12-05 15:14:53 FEF60A37301E1F5A3020FA3487FB2CD7 129600 ----a-w- C:\Windows\Sysnative\drivers\rzpnk.sys
2014-12-05 15:14:46 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\Sysnative\drivers\rzpmgrk.sys
2014-12-05 15:14:41 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_rzudd_01009.Wdf
2014-12-05 15:14:27 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_rzdaendpt_01009.Wdf
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Windows\Sysnative\drivers\STXII.sys
2014-12-03 10:54:45 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\Sysnative\drivers\TrueSight.sys
2014-12-01 20:27:19 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-12-01 20:26:08 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-12-01 20:26:08 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-12-01 20:26:08 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-11-12 20:43:07 41774FF331F609EF442B7398EE6202B1 155064 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-11-09 10:54:01 2D589A2C024B2FB238535DB9F7B3597D 53816 ------w- C:\Windows\Sysnative\drivers\DGIVECP.SYS
2014-11-09 10:54:01 0211AB46B73A2623B86C1CFCB30579AB 11576 ------w- C:\Windows\Sysnative\drivers\SSPORT.SYS
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-12-04 21:59:15 -------- d-----w- C:\Program Files\ASUS Essence STX II Audio Device
======= C:\PROGRA~2 =====
2014-12-03 11:05:02 -------- d-----w- C:\PROGRA~2\CrystalDiskInfo
2014-11-24 23:10:28 -------- d-----w- C:\PROGRA~2\ASIO4ALL v2
2014-11-24 23:07:42 -------- d-----w- C:\PROGRA~2\Algorithmix
2014-11-24 22:53:47 -------- d-----w- C:\PROGRA~2\foobar2000
2014-11-19 10:03:57 -------- d-----w- C:\PROGRA~2\Diablo III Public Test
2014-11-17 15:51:05 -------- d-----w- C:\PROGRA~2\Heroes of the Storm
2014-11-09 10:55:37 -------- d-----w- C:\PROGRA~2\SamsungPrinterLiveUpdate
2014-11-09 10:53:59 -------- d-----w- C:\PROGRA~2\Samsung
======= C: =====
====== C:\Users\Andrej\AppData\Roaming ======
2014-12-05 15:17:53 -------- d-----w- C:\Users\Andrej\AppData\Local\Razer
2014-12-05 15:12:56 C69B449891A00BDD425F63A011E390F3 64512 ----a-w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-05 15:12:56 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Razer
2014-12-04 21:59:20 -------- d-----w- C:\Users\Andrej\AppData\Roaming\ASUS
2014-12-01 10:54:50 -------- d-----w- C:\Users\Andrej\AppData\Local\ElevatedDiagnostics
2014-11-24 22:53:53 -------- d-----w- C:\Users\Andrej\AppData\Roaming\foobar2000
2014-11-15 20:41:04 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google
====== C:\Users\Andrej ======
2014-12-05 15:13:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-12-04 21:59:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Essence STX II Audio Device
2014-12-03 11:05:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2014-12-03 11:04:15 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Andrej\Desktop\CrystalDiskInfo6_2_1-en.exe
2014-12-03 10:54:34 -------- d-----w- C:\ProgramData\RogueKiller
2014-12-03 10:53:38 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Andrej\Desktop\RogueKillerX64.exe
2014-12-03 10:49:10 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Andrej\Desktop\JRT.exe
2014-12-01 20:34:54 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025 (1).exe
2014-12-01 20:25:04 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025.exe
2014-12-01 20:15:04 CBDDB6C4BCD895F8879FD6AC588007A0 2154496 ----a-w- C:\Users\Andrej\Downloads\adwcleaner_4.103.exe
2014-12-01 20:10:37 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Andrej\Downloads\TFC.exe
2014-12-01 11:09:25 9BA95EF91A20B16E2E21FC67FB4616DC 36363264 ------w- C:\Users\Andrej\Downloads\prime95.exe
2014-11-24 23:07:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Algorithmix
2014-11-24 22:53:25 C6EC330051A8C5F0FB40E28F28CF0FB3 3828176 ----a-w- C:\Users\Andrej\Downloads\foobar2000_v1.3.5.exe
2014-11-19 10:03:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III Public Test
2014-11-17 15:53:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2014-11-09 10:55:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung ML-1640 Series
====== C: exe-files ==
2014-12-05 15:14:55 7D171AB4D34A46CB28D609932FC88916 46311 ----a-w- C:\ProgramData\Razer\Synapse\RzStats\Uninstall\Uninstall.exe
2014-12-05 15:14:55 7D171AB4D34A46CB28D609932FC88916 46311 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RzStats\Razer_RzStats_Uninstall.exe
2014-12-05 15:14:45 E3C7434584E93D91670C23823A50EEF9 32933 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerDeathAdder3500Config\RazerDeathAdder3500Config_Uninstaller.exe
2014-12-05 15:14:44 6A351CB7A1390B4E79E37E54D15C01EE 46399 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\Razer_Common_Driver\RazerCommonDriverUninstaller.exe
2014-12-05 15:14:14 58FC3B75B3833BD347D2D090F4374110 157528 ----a-w- C:\Windows\Temp\RzUpdater\CompressionExtraction\RzSettingsConverter.exe
2014-12-05 15:14:12 FF49B47515BBA03510BE96F8B6B11D0F 32206 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerFonts\RazerFonts_Uninstaller.exe
2014-12-05 15:14:08 FAD602BA174AE11A309575A0D6D049EB 33036 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerCommonConfig\RazerCommonConfig_Uninstaller.exe
2014-12-05 15:13:43 68AC740D528300C29CDD9E07C8C62236 3780112 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_RzStats_v1.01.32.exe
2014-12-05 15:13:40 AEFBEF7DD47CF63E648A4342750DEB61 26202488 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_InGame_Engine_v1.0.12.3915.exe
2014-12-05 15:13:38 EF8204E24F1103AB4BAA17A28D3632D6 6321512 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\RzGSS_Setup_v1.0.6.2565.exe
2014-12-05 15:13:32 67D1E028B6B24AACCACD9582BA1E407C 9243680 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_DeathAdder3500_Config_v1.11.01.exe
2014-12-05 15:13:27 5077C0E75A43546B66CCCDEC0FF0070D 7402320 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_Common_Driver_v1.29.03.exe
2014-12-05 15:13:18 CA7FB5ED3639B8BE2F395D1D6AB66B24 10897408 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_CommonConfigInstaller_v2.36.02.exe
2014-12-05 15:13:12 F85BBDA1E03586F64E60C29F45E4DB90 11669848 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_SynapseFonts_v1.00.01.exe
2014-12-05 14:50:24 977AF0E4BAB67F44EF2C530D30261507 47365168 ----a-w- C:\Program Files (x86)\Heroes of the Storm\Versions\Base33182\HeroesOfTheStorm_x64.exe
2014-12-05 14:50:06 7BBA91D9FA1AA10F9A8F7ED93A2FE764 48322608 ----a-w- C:\Program Files (x86)\Heroes of the Storm\Versions\Base33182\HeroesOfTheStorm.exe
2014-12-05 14:48:59 ABCE2E20DA5CF94C5EEBF436DBF28681 10001968 ----a-w- C:\Program Files (x86)\Battle.net\Battle.net.5325\Battle.net.exe
2014-12-04 21:59:25 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{1A01B996-F7F7-473C-9EA4-B22801713A83}\setup.exe
2014-12-04 21:59:16 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ------w- C:\Program Files\ASUS Essence STX II Audio Device\OpenAL\openalweax.exe
2014-12-04 21:59:15 9F78E615E7B4F39235FC2E79CD7797FB 90112 ------w- C:\Program Files\ASUS Essence STX II Audio Device\Customapp\MXmon.exe
2014-12-04 21:59:15 1DB885E59E94700E0746502DB483ACE5 2162688 ------w- C:\Program Files\ASUS Essence STX II Audio Device\Customapp\AsusAudioCenter.exe
2014-12-04 21:59:14 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ------w- C:\Windows\System32\cmeauASUSSTX2.exe
2014-12-04 21:58:49 BEF1B23AD0BBF805F02FAA01EAE0AF4E 282112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr64.exe
2014-12-04 21:58:49 0740D338A42F7778760F2B0CB6DA5830 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr.exe
2014-12-04 21:58:48 FF8A3980DD28515C69BB68D2D826C226 65536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv.exe
2014-12-04 21:58:48 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmeAuVist64.exe
2014-12-04 21:58:48 A9A7478F7F414FB993959DC0FD3FBC63 221184 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmEnhance.exe
2014-12-04 21:58:48 713AD950BBBF5D5535611261DAB6857C 71168 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmElv64.exe
2014-12-04 21:58:48 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\OpenAL\openalweax.exe
2014-12-04 21:58:48 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\setup.exe
2014-12-04 21:58:48 19DBC03DE66F846A864EFACFEBF3A0AC 577536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Program\CmeAuVist.exe
2014-12-04 21:58:47 9F78E615E7B4F39235FC2E79CD7797FB 90112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\MXmon.exe
2014-12-04 21:58:46 1DB885E59E94700E0746502DB483ACE5 2162688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.exe
2014-12-04 21:56:42 BEF1B23AD0BBF805F02FAA01EAE0AF4E 282112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr64.exe
2014-12-04 21:56:42 0740D338A42F7778760F2B0CB6DA5830 200704 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\dll\HsMgr.exe
2014-12-04 21:56:41 FF8A3980DD28515C69BB68D2D826C226 65536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv.exe
2014-12-04 21:56:41 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmeAuVist64.exe
2014-12-04 21:56:41 A9A7478F7F414FB993959DC0FD3FBC63 221184 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmEnhance.exe
2014-12-04 21:56:41 713AD950BBBF5D5535611261DAB6857C 71168 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmElv64.exe
2014-12-04 21:56:41 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\OpenAL\openalweax.exe
2014-12-04 21:56:41 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\setup.exe
2014-12-04 21:56:41 19DBC03DE66F846A864EFACFEBF3A0AC 577536 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Program\CmeAuVist.exe
2014-12-04 21:56:40 9F78E615E7B4F39235FC2E79CD7797FB 90112 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\MXmon.exe
2014-12-04 21:56:39 1DB885E59E94700E0746502DB483ACE5 2162688 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\Customapp\AsusAudioCenter.exe
2014-12-03 11:05:03 D5F72F1D98858A34405211851558C9CE 2385016 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\DiskInfo.exe
2014-12-03 11:05:03 732529DB7C29A7E9C5A95DA93ACAA7DA 61048 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail.exe
2014-12-03 11:05:03 4A3A4B20168FC1C91E609E47304EFC0C 683104 ----a-w- C:\Users\Andrej\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N4UA57I3\Opera_NI_stable[1].exe
2014-12-03 11:05:03 1F3CF9F2EDA491E461A44D956033D7FF 178688 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\opus\opusdec.exe
2014-12-03 11:05:03 13EDEEF3C1B499A33CB5C9192E2FF881 61560 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail4.exe
2014-12-03 11:05:02 51615B07FEE5FD3BD24700305FC7875E 1270515 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\unins000.exe
2014-12-03 11:04:15 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Andrej\Desktop\CrystalDiskInfo6_2_1-en.exe
2014-12-03 10:53:38 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Andrej\Desktop\RogueKillerX64.exe
2014-12-03 10:50:34 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
2014-12-03 10:49:10 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Andrej\Desktop\JRT.exe
2014-12-01 20:34:54 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025 (1).exe
2014-12-01 20:25:04 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025.exe
2014-12-01 20:15:04 CBDDB6C4BCD895F8879FD6AC588007A0 2154496 ----a-w- C:\Users\Andrej\Downloads\adwcleaner_4.103.exe
2014-12-01 20:10:37 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Andrej\Downloads\TFC.exe
2014-12-01 13:51:54 D4CC8C7863F354C19B046E36DDB6EFAC 98816 ----a-w- C:\Users\Andrej\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost64.exe
2014-12-01 13:51:54 BAB0D4BE626569124A28655FC6789DD2 87552 ----a-w- C:\Users\Andrej\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost32.exe
2014-12-01 11:09:25 9BA95EF91A20B16E2E21FC67FB4616DC 36363264 ------w- C:\Users\Andrej\Downloads\prime95.exe
=== C: other files ==
2014-12-05 15:14:53 FEF60A37301E1F5A3020FA3487FB2CD7 129600 ----a-w- C:\Windows\System32\drivers\rzpnk.sys
2014-12-05 15:14:46 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\System32\drivers\rzpmgrk.sys
2014-12-05 15:13:27 7E10FA2E72CBBBED17197ADCC92E1CE9 359836 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_DA3500Converter_v2.00.01_1.zip
2014-12-04 21:59:16 EDD288D69C3F9739832F162F28532781 2736640 ------w- C:\Program Files\ASUS Essence STX II Audio Device\driver\STXII64.sys
2014-12-04 21:59:16 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ------w- C:\Program Files\ASUS Essence STX II Audio Device\driver\STXII.sys
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Windows\System32\drivers\STXII.sys
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII64.sys
2014-12-04 21:58:49 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.489\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII.sys
2014-12-04 21:56:42 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII64.sys
2014-12-04 21:56:42 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ----a-w- C:\Users\Andrej\AppData\Local\Temp\Rar$EXa0.038\STX_II_7_0_11_5_Win7\SoftwareDriver\driver\STXII.sys
2014-12-04 21:56:23 86B18A1D25D08DC93F19213A86F8785E 18945108 ----a-w- C:\Users\Andrej\Downloads\STX_II_7_0_11_5_Win7 (1).zip
2014-12-03 10:54:45 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\System32\drivers\TrueSight.sys
2014-12-03 10:50:34 F56A319979F631C141F5FF02DF87FDB1 43563 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\prelim.bat
2014-12-03 10:50:34 EBAA7BD799FC68980A6A8594BB14A950 190569 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\misc.bat
2014-12-03 10:50:34 DD1E4D974B1672ABD09EFFB225791C4A 1230 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\TDL4.bat
2014-12-03 10:50:34 BC28D90D34DB7AC6BB5789BF3C9E8FDB 14957 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\get.bat
2014-12-03 10:50:34 AD2F52DC72B10AF331692E4A4DD80DFC 18670 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\medfos.bat
2014-12-03 10:50:34 AA0C656F898523BEDF2DA6923197BB80 1264 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\surfvox.bat
2014-12-03 10:50:34 8E6020C14F982CF11B3FE7DBB0CB8EDE 24738 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\searchlnk.bat
2014-12-03 10:50:34 86707BCE5CBB65D9B1C41E249B4423BA 152733 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\firefox.bat
2014-12-03 10:50:34 83F691D8398F0E37E71E9355BF730DB9 719 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\ev_clear.bat
2014-12-03 10:50:34 813FA9E2180EE3BB5EFCE744009B5611 10880 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\runvalues.bat
2014-12-03 10:50:34 38A0BDF322ACCC968B0A824C38D50157 29635 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\ask.bat
2014-12-03 10:50:34 335DFF8F23E5EC02B5426362F0F8509B 31401 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\iexplore.bat
2014-12-03 10:50:34 0C4649A62845AB5D5DBCC4998477FF6D 1813 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\delfolders.bat
2014-12-03 10:50:34 080CFDE64F31E7B50EECF4552033E84D 9937 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\mws.bat
2014-12-03 10:50:34 048407135C9B1FB6A355E256BD96160D 14192 ----a-w- C:\Users\Andrej\AppData\Local\Temp\jrt\chrome.bat
2014-12-01 20:27:19 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-01 20:26:08 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-01 20:26:08 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-01 20:26:08 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-01 14:17:44 70F89D8E1EFC67315573A52E755218A4 540920 ----a-w- C:\Users\Andrej\Downloads\foo_dynamic_range_1.1.1.zip
2014-12-01 13:57:27 70F89D8E1EFC67315573A52E755218A4 540920 ----a-w- C:\Users\Andrej\Desktop\Nový priečinok\foo_dynamic_range_1.1.1.zip
2014-12-01 11:09:00 4C155D4AD8B9C4215A4814B66E9037F1 5378177 ----a-w- C:\Users\Andrej\Downloads\p95v285.win64.zip
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-21-2347622384-2809294876-4271719555-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"ACSW16EN"="C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe"
"RIMBBLaunchAgent.exe"="C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"
"RIM PeerManager"="C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
"Samsung PanelMgr"="C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun"
"Razer Synapse"="C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe"
"Cmaudio8788"="C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CmiCnfgSTXII.dll,CMICtrlWnd"
"Cmaudio8788GX"="C:\Windows\syswow64\HsMgr.exe Envoke"
"Cmaudio8788GX64"="C:\Windows\system\HsMgr64.exe Envoke"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21. 10. 2014 14:35]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21. 10. 2014 14:35]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Start Corsair Link" ["C:\Program Files (x86)\Corsair\Corsair Link\CorsairLINK.exe"]
"C:\Windows\SysNative\tasks\ASUS\i-Setup144110" [C:\Windows\AMD_Chipset_Win7_V307320\AsusSetup.exe]
"C:\Windows\SysNative\tasks\ASUS\i-Setup153920" [C:\Windows\AMD_Chipset_V307320_Windows7\AsusSetup.exe]
==== Chromium Look ======================
Google Slides - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
AdBlock - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
BB10 / PlayBook App Manager - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmbaalodpmjjhpobkgljnelbpblnikkp
Google Wallet - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Andrej\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Andrej\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=16 folders=18 14785013 bytes)
==== Empty Temp Folders ======================
C:\Users\Andrej\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Andrej\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on pi 05. 12. 2014 at 16:51:13,12 ======================
Re: Zamrzanie PC - prosím o pomoc
teraz je to presne podla postupu:
Re: Zamrzanie PC - prosím o pomoc
Zoek.exe v5.0.0.0 Updated 03-December-2014
Tool run by Andrej on pi 05. 12. 2014 at 16:57:20,07.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Andrej\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean]
==== Older Logs ======================
C:\zoek-results2014-12-05-155113.log 48637 bytes
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2014-12-04 21:59:16 B1CA646A688C9DD1F899A776157C14D7 456414 ------w- C:\Windows\asusstx2.ico
2014-12-04 21:59:16 9F009D41E2577BA3D50D6EB37E866422 1144983 ------w- C:\Windows\KB936225x64.msu
2014-12-04 21:59:15 FC286821DB02A1D3B571BFD356CB7159 51164 ----a-w- C:\Windows\CMICNFGSTXII.INI.cfl
2014-12-04 21:59:06 CDB5F68FD0E9E8827C99E0B77C2C628D 1078 ----a-w- C:\Windows\CMICNFGSTXII.INI.imi
2014-12-04 21:59:06 9E2C67E4A4ED9588F0C0CA664899DCC1 5277 ------w- C:\Windows\CMICNFGSTXII.INI.cfg
2014-12-04 21:59:04 A79563D75F2F9572AA964DE66B0611E2 505 ------w- C:\Windows\cmudaxp_STXII.ini
2014-11-19 23:09:21 3AA6D076E371EB7FCC22B85B8A1B53A9 36864 ------w- C:\Windows\Algouinstall.exe
2014-11-09 10:55:39 782C99F7241BC9ACE38CB5D7382DF9C7 479232 ----a-w- C:\Windows\ssndii.exe
2014-11-09 10:55:28 F6CAE25A0B2F38F536A9339A878E2ED1 11502 ------w- C:\Windows\Dr. Printer Icon.ico
2014-11-09 10:55:28 6E32354BEFF6EB30D620012098B50FD9 133757 ------w- C:\Windows\SmartCMS2.ico
2014-11-09 10:55:27 C048724563615DDE0471383910A6959E 5430 ------w- C:\Windows\AnyWeb Print.ico
====== C:\Users\Andrej\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-12-04 21:59:16 A31EB8FF1492B63BDADA025D994C5B0D 143360 ------w- C:\Windows\SysWOW64\VmixP8.dll
2014-12-04 21:59:16 9C23E8A586950345EE5DC8DA2A2583CF 303104 ------w- C:\Windows\SysWOW64\cmasioSTXII.dll
2014-12-04 21:59:16 93025BD3FF15B401905F59125A873D89 54 ------w- C:\Windows\SysWOW64\cmasioSTXII.ini
2014-12-04 21:59:16 8AC47B5D5A2521C194B9433B9A0159D6 200704 ------w- C:\Windows\SysWOW64\Cmpaoxy.dll
2014-12-04 21:59:16 06FB32873596CBB20E1DC83677940FAF 122880 ------w- C:\Windows\SysWOW64\Cm_Oal.dll
2014-12-04 21:59:16 004D68BBA5D9D14263E6342915D7B5FF 13463552 ------w- C:\Windows\SysWOW64\CmiCnfgSTXII.dll
2014-12-04 21:58:49 B8B44F6431C68171BB4B2380D238AC6F 315392 ----a-w- C:\Windows\SysWOW64\CmiFltr_STXII.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-12-04 21:59:16 EF1709419A75A60A5F6271B3DF48EBEF 58 ------w- C:\Windows\Sysnative\cmasioSTXII64.ini
2014-12-04 21:59:16 D33BF3026827B84A3425C0B6CCBF4381 4650496 ------w- C:\Windows\Sysnative\CmiCnfgSTXII.cpl
2014-12-04 21:59:16 759E35D5F9F47EFB1F9F7615CDC18D64 465408 ------w- C:\Windows\Sysnative\cmasioSTXII64.dll
2014-12-04 21:59:16 06FB32873596CBB20E1DC83677940FAF 122880 ------w- C:\Windows\Sysnative\Cm_Oal.dll
2014-12-04 21:59:14 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ------w- C:\Windows\Sysnative\cmeauASUSSTX2.exe
2014-12-04 21:59:06 11BB3D5DC9336037C14A46873FA1FFDF 359424 ------w- C:\Windows\Sysnative\CmiInstallResAll64.dll
2014-12-04 21:58:49 D0202455E9140E0F8847F50B5F03FF8F 32768 ----a-w- C:\Windows\Sysnative\cmudaxp_STXII.dll
====== C:\Windows\Sysnative\drivers =====
2014-12-05 15:14:53 FEF60A37301E1F5A3020FA3487FB2CD7 129600 ----a-w- C:\Windows\Sysnative\drivers\rzpnk.sys
2014-12-05 15:14:46 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\Sysnative\drivers\rzpmgrk.sys
2014-12-05 15:14:41 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_rzudd_01009.Wdf
2014-12-05 15:14:27 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_rzdaendpt_01009.Wdf
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Windows\Sysnative\drivers\STXII.sys
2014-12-03 10:54:45 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\Sysnative\drivers\TrueSight.sys
2014-12-01 20:27:19 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-12-01 20:26:08 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-12-01 20:26:08 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-12-01 20:26:08 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-11-12 20:43:07 41774FF331F609EF442B7398EE6202B1 155064 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-11-09 10:54:01 2D589A2C024B2FB238535DB9F7B3597D 53816 ------w- C:\Windows\Sysnative\drivers\DGIVECP.SYS
2014-11-09 10:54:01 0211AB46B73A2623B86C1CFCB30579AB 11576 ------w- C:\Windows\Sysnative\drivers\SSPORT.SYS
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-12-04 21:59:15 -------- d-----w- C:\Program Files\ASUS Essence STX II Audio Device
======= C:\PROGRA~2 =====
2014-12-03 11:05:02 -------- d-----w- C:\PROGRA~2\CrystalDiskInfo
2014-11-24 23:10:28 -------- d-----w- C:\PROGRA~2\ASIO4ALL v2
2014-11-24 23:07:42 -------- d-----w- C:\PROGRA~2\Algorithmix
2014-11-24 22:53:47 -------- d-----w- C:\PROGRA~2\foobar2000
2014-11-19 10:03:57 -------- d-----w- C:\PROGRA~2\Diablo III Public Test
2014-11-17 15:51:05 -------- d-----w- C:\PROGRA~2\Heroes of the Storm
2014-11-09 10:55:37 -------- d-----w- C:\PROGRA~2\SamsungPrinterLiveUpdate
2014-11-09 10:53:59 -------- d-----w- C:\PROGRA~2\Samsung
======= C: =====
====== C:\Users\Andrej\AppData\Roaming ======
2014-12-05 15:48:24 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2014-12-05 15:48:24 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2014-12-05 15:48:24 -------- d-----w- C:\Users\Default\AppData\Local\Temp
2014-12-05 15:48:24 -------- d-----w- C:\Users\Default User\AppData\Local\Temp
2014-12-05 15:48:23 -------- d-----w- C:\Users\Andrej\AppData\Local\Temp
2014-12-05 15:17:53 -------- d-----w- C:\Users\Andrej\AppData\Local\Razer
2014-12-05 15:12:56 C69B449891A00BDD425F63A011E390F3 64512 ----a-w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-05 15:12:56 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Razer
2014-12-04 21:59:20 -------- d-----w- C:\Users\Andrej\AppData\Roaming\ASUS
2014-12-01 10:54:50 -------- d-----w- C:\Users\Andrej\AppData\Local\ElevatedDiagnostics
2014-11-24 22:53:53 -------- d-----w- C:\Users\Andrej\AppData\Roaming\foobar2000
2014-11-15 20:41:04 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google
====== C:\Users\Andrej ======
2014-12-05 15:13:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-12-04 21:59:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Essence STX II Audio Device
2014-12-03 11:05:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2014-12-03 11:04:15 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Andrej\Desktop\CrystalDiskInfo6_2_1-en.exe
2014-12-03 10:54:34 -------- d-----w- C:\ProgramData\RogueKiller
2014-12-03 10:53:38 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Andrej\Desktop\RogueKillerX64.exe
2014-12-03 10:49:10 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Andrej\Desktop\JRT.exe
2014-12-01 20:34:54 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025 (1).exe
2014-12-01 20:25:04 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025.exe
2014-12-01 20:15:04 CBDDB6C4BCD895F8879FD6AC588007A0 2154496 ----a-w- C:\Users\Andrej\Downloads\adwcleaner_4.103.exe
2014-12-01 20:10:37 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Andrej\Downloads\TFC.exe
2014-12-01 11:09:25 9BA95EF91A20B16E2E21FC67FB4616DC 36363264 ------w- C:\Users\Andrej\Downloads\prime95.exe
2014-11-24 23:07:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Algorithmix
2014-11-24 22:53:25 C6EC330051A8C5F0FB40E28F28CF0FB3 3828176 ----a-w- C:\Users\Andrej\Downloads\foobar2000_v1.3.5.exe
2014-11-19 10:03:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III Public Test
2014-11-17 15:53:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2014-11-09 10:55:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung ML-1640 Series
====== C: exe-files ==
2014-12-05 15:14:55 7D171AB4D34A46CB28D609932FC88916 46311 ----a-w- C:\ProgramData\Razer\Synapse\RzStats\Uninstall\Uninstall.exe
2014-12-05 15:14:55 7D171AB4D34A46CB28D609932FC88916 46311 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RzStats\Razer_RzStats_Uninstall.exe
2014-12-05 15:14:45 E3C7434584E93D91670C23823A50EEF9 32933 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerDeathAdder3500Config\RazerDeathAdder3500Config_Uninstaller.exe
2014-12-05 15:14:44 6A351CB7A1390B4E79E37E54D15C01EE 46399 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\Razer_Common_Driver\RazerCommonDriverUninstaller.exe
2014-12-05 15:14:12 FF49B47515BBA03510BE96F8B6B11D0F 32206 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerFonts\RazerFonts_Uninstaller.exe
2014-12-05 15:14:08 FAD602BA174AE11A309575A0D6D049EB 33036 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerCommonConfig\RazerCommonConfig_Uninstaller.exe
2014-12-05 15:13:43 68AC740D528300C29CDD9E07C8C62236 3780112 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_RzStats_v1.01.32.exe
2014-12-05 15:13:40 AEFBEF7DD47CF63E648A4342750DEB61 26202488 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_InGame_Engine_v1.0.12.3915.exe
2014-12-05 15:13:38 EF8204E24F1103AB4BAA17A28D3632D6 6321512 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\RzGSS_Setup_v1.0.6.2565.exe
2014-12-05 15:13:32 67D1E028B6B24AACCACD9582BA1E407C 9243680 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_DeathAdder3500_Config_v1.11.01.exe
2014-12-05 15:13:27 5077C0E75A43546B66CCCDEC0FF0070D 7402320 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_Common_Driver_v1.29.03.exe
2014-12-05 15:13:18 CA7FB5ED3639B8BE2F395D1D6AB66B24 10897408 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_CommonConfigInstaller_v2.36.02.exe
2014-12-05 15:13:12 F85BBDA1E03586F64E60C29F45E4DB90 11669848 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_SynapseFonts_v1.00.01.exe
2014-12-05 14:50:24 977AF0E4BAB67F44EF2C530D30261507 47365168 ----a-w- C:\Program Files (x86)\Heroes of the Storm\Versions\Base33182\HeroesOfTheStorm_x64.exe
2014-12-05 14:50:06 7BBA91D9FA1AA10F9A8F7ED93A2FE764 48322608 ----a-w- C:\Program Files (x86)\Heroes of the Storm\Versions\Base33182\HeroesOfTheStorm.exe
2014-12-05 14:48:59 ABCE2E20DA5CF94C5EEBF436DBF28681 10001968 ----a-w- C:\Program Files (x86)\Battle.net\Battle.net.5325\Battle.net.exe
2014-12-04 21:59:25 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{1A01B996-F7F7-473C-9EA4-B22801713A83}\setup.exe
2014-12-04 21:59:16 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ------w- C:\Program Files\ASUS Essence STX II Audio Device\OpenAL\openalweax.exe
2014-12-04 21:59:15 9F78E615E7B4F39235FC2E79CD7797FB 90112 ------w- C:\Program Files\ASUS Essence STX II Audio Device\Customapp\MXmon.exe
2014-12-04 21:59:15 1DB885E59E94700E0746502DB483ACE5 2162688 ------w- C:\Program Files\ASUS Essence STX II Audio Device\Customapp\AsusAudioCenter.exe
2014-12-04 21:59:14 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ------w- C:\Windows\System32\cmeauASUSSTX2.exe
2014-12-03 11:05:03 D5F72F1D98858A34405211851558C9CE 2385016 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\DiskInfo.exe
2014-12-03 11:05:03 732529DB7C29A7E9C5A95DA93ACAA7DA 61048 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail.exe
2014-12-03 11:05:03 1F3CF9F2EDA491E461A44D956033D7FF 178688 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\opus\opusdec.exe
2014-12-03 11:05:03 13EDEEF3C1B499A33CB5C9192E2FF881 61560 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail4.exe
2014-12-03 11:05:02 51615B07FEE5FD3BD24700305FC7875E 1270515 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\unins000.exe
2014-12-03 11:04:15 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Andrej\Desktop\CrystalDiskInfo6_2_1-en.exe
2014-12-03 10:53:38 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Andrej\Desktop\RogueKillerX64.exe
2014-12-03 10:49:10 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Andrej\Desktop\JRT.exe
2014-12-01 20:34:54 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025 (1).exe
2014-12-01 20:25:04 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025.exe
2014-12-01 20:15:04 CBDDB6C4BCD895F8879FD6AC588007A0 2154496 ----a-w- C:\Users\Andrej\Downloads\adwcleaner_4.103.exe
2014-12-01 20:10:37 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Andrej\Downloads\TFC.exe
2014-12-01 13:51:54 D4CC8C7863F354C19B046E36DDB6EFAC 98816 ----a-w- C:\Users\Andrej\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost64.exe
2014-12-01 13:51:54 BAB0D4BE626569124A28655FC6789DD2 87552 ----a-w- C:\Users\Andrej\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost32.exe
2014-12-01 11:09:25 9BA95EF91A20B16E2E21FC67FB4616DC 36363264 ------w- C:\Users\Andrej\Downloads\prime95.exe
=== C: other files ==
2014-12-05 15:14:53 FEF60A37301E1F5A3020FA3487FB2CD7 129600 ----a-w- C:\Windows\System32\drivers\rzpnk.sys
2014-12-05 15:14:46 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\System32\drivers\rzpmgrk.sys
2014-12-05 15:13:27 7E10FA2E72CBBBED17197ADCC92E1CE9 359836 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_DA3500Converter_v2.00.01_1.zip
2014-12-04 21:59:16 EDD288D69C3F9739832F162F28532781 2736640 ------w- C:\Program Files\ASUS Essence STX II Audio Device\driver\STXII64.sys
2014-12-04 21:59:16 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ------w- C:\Program Files\ASUS Essence STX II Audio Device\driver\STXII.sys
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Windows\System32\drivers\STXII.sys
2014-12-04 21:56:23 86B18A1D25D08DC93F19213A86F8785E 18945108 ----a-w- C:\Users\Andrej\Downloads\STX_II_7_0_11_5_Win7 (1).zip
2014-12-03 10:54:45 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\System32\drivers\TrueSight.sys
2014-12-01 20:27:19 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-01 20:26:08 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-01 20:26:08 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-01 20:26:08 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-01 14:17:44 70F89D8E1EFC67315573A52E755218A4 540920 ----a-w- C:\Users\Andrej\Downloads\foo_dynamic_range_1.1.1.zip
2014-12-01 13:57:27 70F89D8E1EFC67315573A52E755218A4 540920 ----a-w- C:\Users\Andrej\Desktop\Nový priečinok\foo_dynamic_range_1.1.1.zip
2014-12-01 11:09:00 4C155D4AD8B9C4215A4814B66E9037F1 5378177 ----a-w- C:\Users\Andrej\Downloads\p95v285.win64.zip
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-21-2347622384-2809294876-4271719555-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"ACSW16EN"="C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe"
"RIMBBLaunchAgent.exe"="C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"
"RIM PeerManager"="C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
"Samsung PanelMgr"="C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun"
"Razer Synapse"="C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe"
"Cmaudio8788"="C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CmiCnfgSTXII.dll,CMICtrlWnd"
"Cmaudio8788GX"="C:\Windows\syswow64\HsMgr.exe Envoke"
"Cmaudio8788GX64"="C:\Windows\system\HsMgr64.exe Envoke"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21. 10. 2014 14:35]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21. 10. 2014 14:35]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Start Corsair Link" ["C:\Program Files (x86)\Corsair\Corsair Link\CorsairLINK.exe"]
"C:\Windows\SysNative\tasks\ASUS\i-Setup144110" [C:\Windows\AMD_Chipset_Win7_V307320\AsusSetup.exe]
"C:\Windows\SysNative\tasks\ASUS\i-Setup153920" [C:\Windows\AMD_Chipset_V307320_Windows7\AsusSetup.exe]
==== Chromium Look ======================
Google Slides - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
AdBlock - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
BB10 / PlayBook App Manager - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmbaalodpmjjhpobkgljnelbpblnikkp
Google Wallet - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Andrej\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Andrej\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=16 folders=18 14785013 bytes)
==== Empty Temp Folders ======================
C:\Users\Andrej\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Andrej\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on pi 05. 12. 2014 at 17:06:53,91 ======================
Tool run by Andrej on pi 05. 12. 2014 at 16:57:20,07.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Andrej\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean]
==== Older Logs ======================
C:\zoek-results2014-12-05-155113.log 48637 bytes
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2014-12-04 21:59:16 B1CA646A688C9DD1F899A776157C14D7 456414 ------w- C:\Windows\asusstx2.ico
2014-12-04 21:59:16 9F009D41E2577BA3D50D6EB37E866422 1144983 ------w- C:\Windows\KB936225x64.msu
2014-12-04 21:59:15 FC286821DB02A1D3B571BFD356CB7159 51164 ----a-w- C:\Windows\CMICNFGSTXII.INI.cfl
2014-12-04 21:59:06 CDB5F68FD0E9E8827C99E0B77C2C628D 1078 ----a-w- C:\Windows\CMICNFGSTXII.INI.imi
2014-12-04 21:59:06 9E2C67E4A4ED9588F0C0CA664899DCC1 5277 ------w- C:\Windows\CMICNFGSTXII.INI.cfg
2014-12-04 21:59:04 A79563D75F2F9572AA964DE66B0611E2 505 ------w- C:\Windows\cmudaxp_STXII.ini
2014-11-19 23:09:21 3AA6D076E371EB7FCC22B85B8A1B53A9 36864 ------w- C:\Windows\Algouinstall.exe
2014-11-09 10:55:39 782C99F7241BC9ACE38CB5D7382DF9C7 479232 ----a-w- C:\Windows\ssndii.exe
2014-11-09 10:55:28 F6CAE25A0B2F38F536A9339A878E2ED1 11502 ------w- C:\Windows\Dr. Printer Icon.ico
2014-11-09 10:55:28 6E32354BEFF6EB30D620012098B50FD9 133757 ------w- C:\Windows\SmartCMS2.ico
2014-11-09 10:55:27 C048724563615DDE0471383910A6959E 5430 ------w- C:\Windows\AnyWeb Print.ico
====== C:\Users\Andrej\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-12-04 21:59:16 A31EB8FF1492B63BDADA025D994C5B0D 143360 ------w- C:\Windows\SysWOW64\VmixP8.dll
2014-12-04 21:59:16 9C23E8A586950345EE5DC8DA2A2583CF 303104 ------w- C:\Windows\SysWOW64\cmasioSTXII.dll
2014-12-04 21:59:16 93025BD3FF15B401905F59125A873D89 54 ------w- C:\Windows\SysWOW64\cmasioSTXII.ini
2014-12-04 21:59:16 8AC47B5D5A2521C194B9433B9A0159D6 200704 ------w- C:\Windows\SysWOW64\Cmpaoxy.dll
2014-12-04 21:59:16 06FB32873596CBB20E1DC83677940FAF 122880 ------w- C:\Windows\SysWOW64\Cm_Oal.dll
2014-12-04 21:59:16 004D68BBA5D9D14263E6342915D7B5FF 13463552 ------w- C:\Windows\SysWOW64\CmiCnfgSTXII.dll
2014-12-04 21:58:49 B8B44F6431C68171BB4B2380D238AC6F 315392 ----a-w- C:\Windows\SysWOW64\CmiFltr_STXII.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-12-04 21:59:16 EF1709419A75A60A5F6271B3DF48EBEF 58 ------w- C:\Windows\Sysnative\cmasioSTXII64.ini
2014-12-04 21:59:16 D33BF3026827B84A3425C0B6CCBF4381 4650496 ------w- C:\Windows\Sysnative\CmiCnfgSTXII.cpl
2014-12-04 21:59:16 759E35D5F9F47EFB1F9F7615CDC18D64 465408 ------w- C:\Windows\Sysnative\cmasioSTXII64.dll
2014-12-04 21:59:16 06FB32873596CBB20E1DC83677940FAF 122880 ------w- C:\Windows\Sysnative\Cm_Oal.dll
2014-12-04 21:59:14 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ------w- C:\Windows\Sysnative\cmeauASUSSTX2.exe
2014-12-04 21:59:06 11BB3D5DC9336037C14A46873FA1FFDF 359424 ------w- C:\Windows\Sysnative\CmiInstallResAll64.dll
2014-12-04 21:58:49 D0202455E9140E0F8847F50B5F03FF8F 32768 ----a-w- C:\Windows\Sysnative\cmudaxp_STXII.dll
====== C:\Windows\Sysnative\drivers =====
2014-12-05 15:14:53 FEF60A37301E1F5A3020FA3487FB2CD7 129600 ----a-w- C:\Windows\Sysnative\drivers\rzpnk.sys
2014-12-05 15:14:46 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\Sysnative\drivers\rzpmgrk.sys
2014-12-05 15:14:41 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_rzudd_01009.Wdf
2014-12-05 15:14:27 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_rzdaendpt_01009.Wdf
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Windows\Sysnative\drivers\STXII.sys
2014-12-03 10:54:45 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\Sysnative\drivers\TrueSight.sys
2014-12-01 20:27:19 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-12-01 20:26:08 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-12-01 20:26:08 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-12-01 20:26:08 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-11-12 20:43:07 41774FF331F609EF442B7398EE6202B1 155064 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-11-09 10:54:01 2D589A2C024B2FB238535DB9F7B3597D 53816 ------w- C:\Windows\Sysnative\drivers\DGIVECP.SYS
2014-11-09 10:54:01 0211AB46B73A2623B86C1CFCB30579AB 11576 ------w- C:\Windows\Sysnative\drivers\SSPORT.SYS
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-12-04 21:59:15 -------- d-----w- C:\Program Files\ASUS Essence STX II Audio Device
======= C:\PROGRA~2 =====
2014-12-03 11:05:02 -------- d-----w- C:\PROGRA~2\CrystalDiskInfo
2014-11-24 23:10:28 -------- d-----w- C:\PROGRA~2\ASIO4ALL v2
2014-11-24 23:07:42 -------- d-----w- C:\PROGRA~2\Algorithmix
2014-11-24 22:53:47 -------- d-----w- C:\PROGRA~2\foobar2000
2014-11-19 10:03:57 -------- d-----w- C:\PROGRA~2\Diablo III Public Test
2014-11-17 15:51:05 -------- d-----w- C:\PROGRA~2\Heroes of the Storm
2014-11-09 10:55:37 -------- d-----w- C:\PROGRA~2\SamsungPrinterLiveUpdate
2014-11-09 10:53:59 -------- d-----w- C:\PROGRA~2\Samsung
======= C: =====
====== C:\Users\Andrej\AppData\Roaming ======
2014-12-05 15:48:24 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2014-12-05 15:48:24 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2014-12-05 15:48:24 -------- d-----w- C:\Users\Default\AppData\Local\Temp
2014-12-05 15:48:24 -------- d-----w- C:\Users\Default User\AppData\Local\Temp
2014-12-05 15:48:23 -------- d-----w- C:\Users\Andrej\AppData\Local\Temp
2014-12-05 15:17:53 -------- d-----w- C:\Users\Andrej\AppData\Local\Razer
2014-12-05 15:12:56 C69B449891A00BDD425F63A011E390F3 64512 ----a-w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-05 15:12:56 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Razer
2014-12-04 21:59:20 -------- d-----w- C:\Users\Andrej\AppData\Roaming\ASUS
2014-12-01 10:54:50 -------- d-----w- C:\Users\Andrej\AppData\Local\ElevatedDiagnostics
2014-11-24 22:53:53 -------- d-----w- C:\Users\Andrej\AppData\Roaming\foobar2000
2014-11-15 20:41:04 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google
====== C:\Users\Andrej ======
2014-12-05 15:13:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-12-04 21:59:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Essence STX II Audio Device
2014-12-03 11:05:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2014-12-03 11:04:15 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Andrej\Desktop\CrystalDiskInfo6_2_1-en.exe
2014-12-03 10:54:34 -------- d-----w- C:\ProgramData\RogueKiller
2014-12-03 10:53:38 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Andrej\Desktop\RogueKillerX64.exe
2014-12-03 10:49:10 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Andrej\Desktop\JRT.exe
2014-12-01 20:34:54 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025 (1).exe
2014-12-01 20:25:04 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025.exe
2014-12-01 20:15:04 CBDDB6C4BCD895F8879FD6AC588007A0 2154496 ----a-w- C:\Users\Andrej\Downloads\adwcleaner_4.103.exe
2014-12-01 20:10:37 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Andrej\Downloads\TFC.exe
2014-12-01 11:09:25 9BA95EF91A20B16E2E21FC67FB4616DC 36363264 ------w- C:\Users\Andrej\Downloads\prime95.exe
2014-11-24 23:07:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Algorithmix
2014-11-24 22:53:25 C6EC330051A8C5F0FB40E28F28CF0FB3 3828176 ----a-w- C:\Users\Andrej\Downloads\foobar2000_v1.3.5.exe
2014-11-19 10:03:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III Public Test
2014-11-17 15:53:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2014-11-09 10:55:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung ML-1640 Series
====== C: exe-files ==
2014-12-05 15:14:55 7D171AB4D34A46CB28D609932FC88916 46311 ----a-w- C:\ProgramData\Razer\Synapse\RzStats\Uninstall\Uninstall.exe
2014-12-05 15:14:55 7D171AB4D34A46CB28D609932FC88916 46311 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RzStats\Razer_RzStats_Uninstall.exe
2014-12-05 15:14:45 E3C7434584E93D91670C23823A50EEF9 32933 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerDeathAdder3500Config\RazerDeathAdder3500Config_Uninstaller.exe
2014-12-05 15:14:44 6A351CB7A1390B4E79E37E54D15C01EE 46399 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\Razer_Common_Driver\RazerCommonDriverUninstaller.exe
2014-12-05 15:14:12 FF49B47515BBA03510BE96F8B6B11D0F 32206 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerFonts\RazerFonts_Uninstaller.exe
2014-12-05 15:14:08 FAD602BA174AE11A309575A0D6D049EB 33036 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Uninstallers\RazerCommonConfig\RazerCommonConfig_Uninstaller.exe
2014-12-05 15:13:43 68AC740D528300C29CDD9E07C8C62236 3780112 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_RzStats_v1.01.32.exe
2014-12-05 15:13:40 AEFBEF7DD47CF63E648A4342750DEB61 26202488 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_InGame_Engine_v1.0.12.3915.exe
2014-12-05 15:13:38 EF8204E24F1103AB4BAA17A28D3632D6 6321512 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\RzGSS_Setup_v1.0.6.2565.exe
2014-12-05 15:13:32 67D1E028B6B24AACCACD9582BA1E407C 9243680 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_DeathAdder3500_Config_v1.11.01.exe
2014-12-05 15:13:27 5077C0E75A43546B66CCCDEC0FF0070D 7402320 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_Common_Driver_v1.29.03.exe
2014-12-05 15:13:18 CA7FB5ED3639B8BE2F395D1D6AB66B24 10897408 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_CommonConfigInstaller_v2.36.02.exe
2014-12-05 15:13:12 F85BBDA1E03586F64E60C29F45E4DB90 11669848 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_SynapseFonts_v1.00.01.exe
2014-12-05 14:50:24 977AF0E4BAB67F44EF2C530D30261507 47365168 ----a-w- C:\Program Files (x86)\Heroes of the Storm\Versions\Base33182\HeroesOfTheStorm_x64.exe
2014-12-05 14:50:06 7BBA91D9FA1AA10F9A8F7ED93A2FE764 48322608 ----a-w- C:\Program Files (x86)\Heroes of the Storm\Versions\Base33182\HeroesOfTheStorm.exe
2014-12-05 14:48:59 ABCE2E20DA5CF94C5EEBF436DBF28681 10001968 ----a-w- C:\Program Files (x86)\Battle.net\Battle.net.5325\Battle.net.exe
2014-12-04 21:59:25 3F49CCB07DD991746FBC6EFB32D26CFD 805376 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{1A01B996-F7F7-473C-9EA4-B22801713A83}\setup.exe
2014-12-04 21:59:16 4FD7E6CE6ADC52B65910677FE4BF2634 765952 ------w- C:\Program Files\ASUS Essence STX II Audio Device\OpenAL\openalweax.exe
2014-12-04 21:59:15 9F78E615E7B4F39235FC2E79CD7797FB 90112 ------w- C:\Program Files\ASUS Essence STX II Audio Device\Customapp\MXmon.exe
2014-12-04 21:59:15 1DB885E59E94700E0746502DB483ACE5 2162688 ------w- C:\Program Files\ASUS Essence STX II Audio Device\Customapp\AsusAudioCenter.exe
2014-12-04 21:59:14 FB1371F0DAB0C0EEA57A0926F0A2F0CE 832000 ------w- C:\Windows\System32\cmeauASUSSTX2.exe
2014-12-03 11:05:03 D5F72F1D98858A34405211851558C9CE 2385016 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\DiskInfo.exe
2014-12-03 11:05:03 732529DB7C29A7E9C5A95DA93ACAA7DA 61048 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail.exe
2014-12-03 11:05:03 1F3CF9F2EDA491E461A44D956033D7FF 178688 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\opus\opusdec.exe
2014-12-03 11:05:03 13EDEEF3C1B499A33CB5C9192E2FF881 61560 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\CdiResource\AlertMail4.exe
2014-12-03 11:05:02 51615B07FEE5FD3BD24700305FC7875E 1270515 ----a-w- C:\Program Files (x86)\CrystalDiskInfo\unins000.exe
2014-12-03 11:04:15 084AF0AC91DE952846D79A3E74ABB0BE 2996728 ----a-w- C:\Users\Andrej\Desktop\CrystalDiskInfo6_2_1-en.exe
2014-12-03 10:53:38 86D57AC9FEFD3B541F1A016C1A4ECFAC 18310232 ----a-w- C:\Users\Andrej\Desktop\RogueKillerX64.exe
2014-12-03 10:49:10 C254F3ECEB9B1AC795BA6B25DE008EBA 1707646 ----a-w- C:\Users\Andrej\Desktop\JRT.exe
2014-12-01 20:34:54 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025 (1).exe
2014-12-01 20:25:04 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\Andrej\Downloads\mbam-setup-2.0.3.1025.exe
2014-12-01 20:15:04 CBDDB6C4BCD895F8879FD6AC588007A0 2154496 ----a-w- C:\Users\Andrej\Downloads\adwcleaner_4.103.exe
2014-12-01 20:10:37 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Users\Andrej\Downloads\TFC.exe
2014-12-01 13:51:54 D4CC8C7863F354C19B046E36DDB6EFAC 98816 ----a-w- C:\Users\Andrej\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost64.exe
2014-12-01 13:51:54 BAB0D4BE626569124A28655FC6789DD2 87552 ----a-w- C:\Users\Andrej\AppData\Roaming\foobar2000\user-components\foo_out_asio\ASIOhost32.exe
2014-12-01 11:09:25 9BA95EF91A20B16E2E21FC67FB4616DC 36363264 ------w- C:\Users\Andrej\Downloads\prime95.exe
=== C: other files ==
2014-12-05 15:14:53 FEF60A37301E1F5A3020FA3487FB2CD7 129600 ----a-w- C:\Windows\System32\drivers\rzpnk.sys
2014-12-05 15:14:46 F17F84511E7DFDEEAB646F0699A006D7 37184 ----a-w- C:\Windows\System32\drivers\rzpmgrk.sys
2014-12-05 15:13:27 7E10FA2E72CBBBED17197ADCC92E1CE9 359836 ----a-w- C:\ProgramData\Razer\Synapse\ProductUpdates\Downloads\Razer_DA3500Converter_v2.00.01_1.zip
2014-12-04 21:59:16 EDD288D69C3F9739832F162F28532781 2736640 ------w- C:\Program Files\ASUS Essence STX II Audio Device\driver\STXII64.sys
2014-12-04 21:59:16 39C1548B417A31B0B4FCBA3FE7A729AB 1769984 ------w- C:\Program Files\ASUS Essence STX II Audio Device\driver\STXII.sys
2014-12-04 21:58:49 EDD288D69C3F9739832F162F28532781 2736640 ----a-w- C:\Windows\System32\drivers\STXII.sys
2014-12-04 21:56:23 86B18A1D25D08DC93F19213A86F8785E 18945108 ----a-w- C:\Users\Andrej\Downloads\STX_II_7_0_11_5_Win7 (1).zip
2014-12-03 10:54:45 975F2CAA23B9CF4420EAB6439BE4D233 37624 ----a-w- C:\Windows\System32\drivers\TrueSight.sys
2014-12-01 20:27:19 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-01 20:26:08 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-01 20:26:08 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-01 20:26:08 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-01 14:17:44 70F89D8E1EFC67315573A52E755218A4 540920 ----a-w- C:\Users\Andrej\Downloads\foo_dynamic_range_1.1.1.zip
2014-12-01 13:57:27 70F89D8E1EFC67315573A52E755218A4 540920 ----a-w- C:\Users\Andrej\Desktop\Nový priečinok\foo_dynamic_range_1.1.1.zip
2014-12-01 11:09:00 4C155D4AD8B9C4215A4814B66E9037F1 5378177 ----a-w- C:\Users\Andrej\Downloads\p95v285.win64.zip
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-21-2347622384-2809294876-4271719555-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"ACSW16EN"="C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe"
"RIMBBLaunchAgent.exe"="C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"
"RIM PeerManager"="C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
"Samsung PanelMgr"="C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun"
"Razer Synapse"="C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe"
"Cmaudio8788"="C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CmiCnfgSTXII.dll,CMICtrlWnd"
"Cmaudio8788GX"="C:\Windows\syswow64\HsMgr.exe Envoke"
"Cmaudio8788GX64"="C:\Windows\system\HsMgr64.exe Envoke"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21. 10. 2014 14:35]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21. 10. 2014 14:35]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Start Corsair Link" ["C:\Program Files (x86)\Corsair\Corsair Link\CorsairLINK.exe"]
"C:\Windows\SysNative\tasks\ASUS\i-Setup144110" [C:\Windows\AMD_Chipset_Win7_V307320\AsusSetup.exe]
"C:\Windows\SysNative\tasks\ASUS\i-Setup153920" [C:\Windows\AMD_Chipset_V307320_Windows7\AsusSetup.exe]
==== Chromium Look ======================
Google Slides - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
AdBlock - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
BB10 / PlayBook App Manager - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmbaalodpmjjhpobkgljnelbpblnikkp
Google Wallet - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Andrej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Andrej\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Andrej\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=16 folders=18 14785013 bytes)
==== Empty Temp Folders ======================
C:\Users\Andrej\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Andrej\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on pi 05. 12. 2014 at 17:06:53,91 ======================
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zamrzanie PC - prosím o pomoc
Vlož nový log z HJT + info o problémech.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Zamrzanie PC - prosím o pomoc
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:23:35, on 5. 12. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
C:\Program Files\ASUS Essence STX II Audio Device\Customapp\ASUSAUDIOCENTER.EXE
C:\Windows\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Users\Andrej\Downloads\hijackthis (1).exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Pomocník pri prihlasovaní v konte Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ACSW16EN] "C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [RIM PeerManager] "C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ACP User Service (amdacpusrsvc) - Unknown owner - C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
O23 - Service: BlackBerry Device Manager - BlackBerry Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RIM MDNS - Apple Inc. - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
O23 - Service: BlackBerry Link Communication Manager (RIM Tunnel Service) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8095 bytes
Scan saved at 19:23:35, on 5. 12. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
C:\Program Files\ASUS Essence STX II Audio Device\Customapp\ASUSAUDIOCENTER.EXE
C:\Windows\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Users\Andrej\Downloads\hijackthis (1).exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Pomocník pri prihlasovaní v konte Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ACSW16EN] "C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [RIM PeerManager] "C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ACP User Service (amdacpusrsvc) - Unknown owner - C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
O23 - Service: BlackBerry Device Manager - BlackBerry Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RIM MDNS - Apple Inc. - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
O23 - Service: BlackBerry Link Communication Manager (RIM Tunnel Service) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8095 bytes
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zamrzanie PC - prosím o pomoc
Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod
Co problémy?
Návod
Kód: Vybrat vše
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Zamrzanie PC - prosím o pomoc
zatial pc nezamrzol, ale po tejto cistke mi na ploche po restarte vyskocia dve okna s rovnakou hlaskou, vid foto. pre istotu prikladam log
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:37:34, on 6. 12. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\AMD_Chipset_V307320_Windows7\AsusSetup.exe
C:\Windows\AMD_Chipset_Win7_V307320\AsusSetup.exe
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Users\Andrej\Desktop\hijackthis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Pomocník pri prihlasovaní v konte Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ACSW16EN] "C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [RIM PeerManager] "C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ACP User Service (amdacpusrsvc) - Unknown owner - C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
O23 - Service: BlackBerry Device Manager - BlackBerry Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RIM MDNS - Apple Inc. - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
O23 - Service: BlackBerry Link Communication Manager (RIM Tunnel Service) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7563 bytes
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:37:34, on 6. 12. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\AMD_Chipset_V307320_Windows7\AsusSetup.exe
C:\Windows\AMD_Chipset_Win7_V307320\AsusSetup.exe
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Users\Andrej\Desktop\hijackthis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Pomocník pri prihlasovaní v konte Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ACSW16EN] "C:\Program Files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [RIM PeerManager] "C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ACP User Service (amdacpusrsvc) - Unknown owner - C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
O23 - Service: BlackBerry Device Manager - BlackBerry Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RIM MDNS - Apple Inc. - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
O23 - Service: BlackBerry Link Communication Manager (RIM Tunnel Service) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7563 bytes
- Přílohy
-
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zamrzanie PC - prosím o pomoc
Zkusil bych opětovnou instalaci programů a ovladačů od Asusu. Pokud to nepomůže --zkusit bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Zamrzanie PC - prosím o pomoc
som skusil preinstalovat asus ovladace, ale nepomohlo. tie hlasky to po restarte hadze stale. Ten bod obnovy by mi vratil pc do stavu pred mazanim bordelu, tj aj s nim nie? nebude lepsie preinstalovat windows? dakujem za doporucenie.
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zamrzanie PC - prosím o pomoc
Ne , zkus udělat ty programy znovu..pokud problémy budou přetrvávat.
Adwcleaner , MbAM , JRT , RK.
Adwcleaner , MbAM , JRT , RK.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 122 hostů