Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2014-04-11 13:03:47
Microsoft Windows 7 Home Premium  Service Pack 1
System drive C: has 147 GB (32%) free of 463 GB
Total RAM: 4091 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:04:10, on 11/04/2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
C:\Users\Milan\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\MagicDisc\MagicDisc.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Norman\npm\bin\zlh.exe
C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\BlueStacks\HD-Agent.exe
C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files (x86)\Brother\Brmfcmon\BrMfimon.exe
C:\Program Files\Norman\npm\bin\zlhh.exe
C:\Program Files\Norman\nig\bin\niguser.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Windows\SysWOW64\cmd.exe
C:\Users\Milan\AppData\Local\Akamai\netsession_win.exe
C:\Users\Milan\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\Norman\npm\bin\nbrowser.exe
C:\Program Files\Norman\Nvc\Bin\nvcod.exe
C:\Program Files\trend micro\Milan.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 9999.9999.9999.9999:9999
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll
O2 - BHO: saavingtoyou - {59D4963E-29C9-4124-1D12-BAC2199F2C2F} - C:\ProgramData\saavingtoyou\3zv5v.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HtmlvalidAtOr - {DE3130D7-ADFA-526F-78A8-CD6D9CCF0FCD} - C:\ProgramData\HtmlvalidAtOr\fXbpap7g.dll
O2 - BHO: saverooon - {E531697A-AF9F-A10C-0A86-59DC44898898} - C:\ProgramData\saverooon\adJHMTPbX.dll
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\FileBulldog DB Toolbar\tbcore3.dll
O3 - Toolbar: (no name) - !{F9639E4A-801B-4843-AEE3-03D9DA199E77} - (no file)
O3 - Toolbar: FileBulldog DB Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files (x86)\FileBulldog DB Toolbar\tbcore3.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [Norman ZANDA] "C:\Program Files\Norman\Npm\Bin\ZLH.EXE" /LOAD /SPLASH
O4 - HKLM\..\Run: [Aeria Ignite] "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Milan\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Milan\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [RavenBleuSA] "C:\Users\Milan\AppData\Local\RavenBleuSA\bin\1.0.13.0\RavenBleuSA.exe"
O4 - HKCU\..\Run: [MicroUpdate] C:\Users\Milan\Documents\MSDCSC\msdcsc.exe
O4 - HKCU\..\Run: [MyTomTomSA.exe] "C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe"
O4 - HKCU\..\Run: [Registry Helper] "C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe" /boot
O4 - HKCU\..\Run: [QuickScanner] C:\Program Files (x86)\Defender Pro Quick Scanner\quickscan.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Milan\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [DriverTurbo] C:\Program Files (x86)\DriverTurbo\DriverTurbo.exe
O4 - HKUS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Samsung.PCSync] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe" /NoDialog (User '?')
O4 - HKUS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [UJ7J2I3XUGVF8JXED] C:\sooi832.bin\CA0A4982641.exe /q (User '?')
O4 - HKUS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Akamai NetSession Interface] "C:\Users\Milan\AppData\Local\Akamai\netsession_win.exe" (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [RavenBleuSA] "C:\Users\Milan\AppData\Local\RavenBleuSA\bin\1.0.13.0\RavenBleuSA.exe" (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [MicroUpdate] C:\Users\Milan\Documents\MSDCSC\msdcsc.exe (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [MyTomTomSA.exe] "C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe" (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Registry Helper] "C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe" /boot (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [QuickScanner] C:\Program Files (x86)\Defender Pro Quick Scanner\quickscan.exe (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [uTorrent] "C:\Users\Milan\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun (User '?')
O4 - HKUS\S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [DriverTurbo] C:\Program Files (x86)\DriverTurbo\DriverTurbo.exe (User '?')
O4 - HKUS\S-1-5-18\..\Run: [Samsung.PCSync] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe" /NoDialog (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Samsung.PCSync] "C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe" /NoDialog (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - S-1-5-21-371070460-1439409656-1301843634-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 Startup: MagicDisc.lnk = C:\Program Files (x86)\MagicDisc\MagicDisc.exe (User '?')
O4 - Startup: MagicDisc.lnk = C:\Program Files (x86)\MagicDisc\MagicDisc.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.aeriagames.com
O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} (20-20 3D Viewer for IKEA) - http://kitchenplanner.ikea.com/be/Core/Player/2020PlayerAX_IKEA_Win32.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - http://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.137.0.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (file missing)
O20 - AppInit_DLLs:     
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: apache2.4 - Apache Software Foundation - C:\xampp\apache\bin\httpd.exe
O23 - Service: Application Driver Auto Removal Service (01) (appdrvrem01) - Unknown owner - C:\Windows\System32\appdrvrem01.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Norman eLogger Service (eLoggerSvc6) - Norman AS - C:\Program Files\Norman\Npm\Bin\elogsvc.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FileZillaServer - FileZilla Project - C:\xampp\filezillaftp\filezillaserver.exe
O23 - Service: Windows Live Family Safety Service (fsssvc) - Unknown owner - C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee ScanAndRepair Svc - Unknown owner - C:\Program Files (x86)\McAfeeScanAndRepair\McAfeeScanRepairSvc.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe (file missing)
O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - C:\PROGRA~2\McAfee\VIRUSS~1\mcsysmon.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: mysql - Unknown owner - C:\xampp\mysql\bin\mysqld.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norman Hash Server (NHS) - Unknown owner - C:\Program Files\Norman\Nvc\bin\nhs.exe (file missing)
O23 - Service: Norman Intrusion Guard (NIG) - Norman Safeground AS - C:\Program Files\Norman\nig\bin\nigsvc32.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool (NitroReaderDriverReadSpool) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe
O23 - Service: Norman Network Filtering service (NNFSVC) - Norman Safeground AS - C:\Program Files\Norman\Ngs\Bin\Nnf.exe
O23 - Service: Norman NJeeves - Unknown owner - C:\Program Files\Norman\Npm\Bin\Njeeves.exe
O23 - Service: Norman ZANDA - Norman AS - C:\Program Files\Norman\Npm\Bin\Zanda.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: Norman Security service (NPROSECSVC) - Norman Safeground AS - C:\Program Files\Norman\Ngs\Bin\Nprosec.exe
O23 - Service: Norman Scanner Engine Service (nsesvc) - Norman ASA - C:\Program Files\Norman\Nse\Bin\NSESVC.EXE
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman AS - C:\Program Files\Norman\Nvc\Bin\nvcoas.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: Norman Resource Provider (NICCA) (NVOY) - Norman AS - C:\Program Files\Norman\Npm\Bin\Nvoy.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norman Scheduler Service (Scheduler) - Norman AS - C:\Program Files\Norman\Npm\Bin\scheduler.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 22076 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\Norman\Npm\Bin\elogsvc.exe"
"C:\Program Files\Norman\Npm\Bin\Nvoy.exe"
"C:\Program Files\Norman\Ngs\Bin\Nnf.exe"
"C:\Program Files\Norman\Ngs\Bin\Nprosec.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\Norman\Npm\Bin\Zanda.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\LSI SoftModem\agr64svc.exe"
"C:\xampp\apache\bin\httpd.exe" -k runservice
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe"
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
"C:\Program Files (x86)\Acer\Registration\GregHSRW.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe" 
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" 
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe" 
"C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\xampp\mysql\bin\mysqld.exe --defaults-file=c:\xampp\mysql\bin\my.ini mysql
"C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe"
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe"
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" 
"C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe" 
"C:\Users\Milan\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe" 
"C:\Program Files (x86)\MagicDisc\MagicDisc.exe" 
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe"
C:\Windows\SysWOW64\IoctlSvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "14837850511951276890-1598672573-11145778726824762569326937762338671181800807450
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 4512
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe"
taskeng.exe {EE0928B3-EC50-41E1-8492-9C6545955A02}
"taskhost.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Launch Manager\LManager.exe" 
"C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe" /AUTORUN
"C:\Program Files\Norman\npm\bin\zlh.exe" /LOAD /SPLASH
"C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
"C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe" 
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 
"C:\Program Files (x86)\iTunes\iTunesHelper.exe" 
"C:\Program Files (x86)\BlueStacks\HD-Agent.exe" 
"C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe" /autorun
"C:\Program Files (x86)\Brother\Brmfcmon\BrMfimon.exe"
"C:\Program Files\Norman\npm\bin\zlhh.exe" /LOAD /SPLASH
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" 
C:\ProgramData\OptimizerPro1\OptimizerPro1.exe /schedule /profilepath "C:\ProgramData\OptimizerPro1\profile.ini"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Norman\Npm\Bin\scheduler.exe"
"C:\Program Files\Norman\Npm\Bin\Njeeves.exe"
"C:\Program Files\Norman\nig\bin\niguser.exe" /intl:0
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
C:\Windows\system32\cmd.exe /c ""C:/Users/Milan/AppData/Local/Akamai/installer_no_upload_silent.exe" & "C:/Users/Milan/AppData/Local/Akamai/netsession_win.exe""
"C:/Users/Milan/AppData/Local/Akamai/netsession_win.exe"
"C:/Users/Milan/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files\Norman\Nse\Bin\NSESVC.EXE" -daemon
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6832.0.812204933\1714016848" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22,26 --gpu-vendor-id=0x10de --gpu-device-id=0x0a74 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3489 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials=AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_76/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/ --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="6832.2.1257718093\1393239209" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials=AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_76/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/ --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="6832.3.959396605\1104665571" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials=AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_76/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/ --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="6832.4.714914199\83531724" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="6832.5.1113333993\164818236" --ppapi-flash-args --lang=nl --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
"C:\Program Files\Norman\npm\bin\nbrowser.exe" 
"C:\Program Files\Norman\Nvc\Bin\nvcod.exe" /ds /mem+ /bs+ "##FULL_SCAN##"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Milan\Downloads\RSITx64.exe" 

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1001Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1001UA.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1005Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1005UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Norton Security Scan for Amber.job
C:\Windows\tasks\Norton Security Scan for Rudi.job
C:\Windows\tasks\OptimizerPro1UpdaterTask{DE9A8EA8-2296-4982-906D-A5DE0C123AEC}.job
C:\Windows\tasks\RegistryBooster.job
C:\Windows\tasks\RMSchedule.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59D4963E-29C9-4124-1D12-BAC2199F2C2F}]
saavingtoyou - C:\ProgramData\saavingtoyou\3zv5v.x64.dll [2013-12-22 473088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-12-14 256080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DE3130D7-ADFA-526F-78A8-CD6D9CCF0FCD}]
HtmlvalidAtOr - C:\ProgramData\HtmlvalidAtOr\fXbpap7g.x64.dll [2014-01-31 475648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E531697A-AF9F-A10C-0A86-59DC44898898}]
saverooon - C:\ProgramData\saverooon\adJHMTPbX.x64.dll [2013-12-22 475648]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll [2014-01-16 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59D4963E-29C9-4124-1D12-BAC2199F2C2F}]
saavingtoyou - C:\ProgramData\saavingtoyou\3zv5v.dll [2013-12-22 423936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-12-14 194128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DE3130D7-ADFA-526F-78A8-CD6D9CCF0FCD}]
HtmlvalidAtOr - C:\ProgramData\HtmlvalidAtOr\fXbpap7g.dll [2014-01-31 427520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E531697A-AF9F-A10C-0A86-59DC44898898}]
saverooon - C:\ProgramData\saverooon\adJHMTPbX.dll [2013-12-22 426496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
SMTTB2009 Class - C:\Program Files (x86)\FileBulldog DB Toolbar\tbcore3.dll [2011-05-27 2399744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
!{F9639E4A-801B-4843-AEE3-03D9DA199E77}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-12-14 256080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
!{F9639E4A-801B-4843-AEE3-03D9DA199E77}
{338B4DFE-2E2C-4338-9E41-E176D497299E} - FileBulldog DB Toolbar - C:\Program Files (x86)\FileBulldog DB Toolbar\tbcore3.dll [2011-05-27 2399744]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-12-14 194128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-05 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-08-12 165912]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-08-12 387608]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-08-12 365592]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-08-06 8060960]
"PLFSetI"=C:\Windows\PLFSetI.exe []
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-06-19 1808168]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2009-08-06 828960]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-01-21 2234144]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-01-21 1179576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=C:\Users\Milan\AppData\Local\Akamai\netsession_win.exe [2013-06-05 4489472]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-08-22 39408]
"Facebook Update"=C:\Users\Milan\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096]
"EA Core"=C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []
"RavenBleuSA"=C:\Users\Milan\AppData\Local\RavenBleuSA\bin\1.0.13.0\RavenBleuSA.exe []
"MicroUpdate"=C:\Users\Milan\Documents\MSDCSC\msdcsc.exe []
"MyTomTomSA.exe"=C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe [2013-05-23 455608]
"Registry Helper"=C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe /boot []
"QuickScanner"=C:\Program Files (x86)\Defender Pro Quick Scanner\quickscan.exe [2013-03-21 14483800]
"uTorrent"=C:\Users\Milan\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-08 1268816]
"DAEMON Tools Pro Agent"=C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2013-05-13 3111456]
"DriverTurbo"=C:\Program Files (x86)\DriverTurbo\DriverTurbo.exe [2013-12-13 9029792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryBooster]
C:\Program Files (x86)\Uniblue\RegistryBooster\launcher.exe delay 20000  []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-03-21 2988488]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-08-27 1194504]
"BrMfcWnd"=C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [2009-05-27 1159168]
"ControlCenter3"=C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [2008-12-24 114688]
"Norman ZANDA"=C:\Program Files\Norman\Npm\Bin\ZLH.EXE [2013-03-08 66888]
"Aeria Ignite"=C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe [2013-06-06 1925656]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"SSDMonitor"=C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2012-01-04 103896]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-10-23 152392]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe [2014-01-20 811792]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-02-26 3814736]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe

C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MagicDisc.lnk - C:\Program Files (x86)\MagicDisc\MagicDisc.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="     "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-07-29 258560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
wlnotify.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2014-01-16 243200]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\Rudi\AppData\Roaming\lsass.exe"="C:\Users\Rudi\AppData\Roaming\lsass.exe:*:Enabled:Windows Messanger"
"C:\Users\Amber\AppData\Roaming\lsass.exe"="C:\Users\Amber\AppData\Roaming\lsass.exe:*:Enabled:Windows Messanger"
"C:\Users\Rudi\AppData\Roaming\winscp.exe"="C:\Users\Rudi\AppData\Roaming\winscp.exe:*:Enabled:Windows Messanger"
"C:\Users\Rudi\AppData\Local\Temp\winscp.exe"="C:\Users\Rudi\AppData\Local\Temp\winscp.exe:*:Enabled:Windows Messanger"
"C:\Users\Amber\AppData\Roaming\winscp.exe"="C:\Users\Amber\AppData\Roaming\winscp.exe:*:Enabled:Windows Messanger"
"C:\Users\Acer\AppData\Roaming\winscp.exe"="C:\Users\Acer\AppData\Roaming\winscp.exe:*:Enabled:Windows Messanger"
"C:\Users\Milan\Downloads\RSXMHackEngineV2.0.1.exe"="C:\Users\Milan\Downloads\RSXMHackEngineV2.0.1.exe:*:Enabled:Windows Messanger"
"C:\Users\Amber\AppData\Local\Temp\SI0JOZRIE1.exe"="C:\Users\Amber\AppData\Local\Temp\SI0JOZRIE1.exe:*:Enabled:Windows Messanger"
"C:\Users\Acer\AppData\Local\Temp\SI0JOZRIE1.exe"="C:\Users\Acer\AppData\Local\Temp\SI0JOZRIE1.exe:*:Enabled:Windows Messanger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 3 months======

2014-04-11 13:03:48 ----D---- C:\Program Files\trend micro
2014-04-11 13:03:47 ----D---- C:\rsit
2014-04-11 12:50:18 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-04-11 12:50:00 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-11 12:50:00 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-04-11 12:50:00 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-04-09 16:57:43 ----A---- C:\Windows\system32\mshtml.dll
2014-04-09 16:57:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-04-09 16:57:34 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-04-09 16:57:34 ----A---- C:\Windows\system32\iologmsg.dll
2014-04-09 16:57:34 ----A---- C:\Windows\system32\drivers\storport.sys
2014-04-09 16:57:34 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-04-09 16:57:34 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-04-09 16:57:30 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-04-09 16:57:30 ----A---- C:\Windows\SYSWOW64\user.exe
2014-04-09 16:57:30 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-04-09 16:57:30 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-04-09 16:57:30 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-04-09 16:57:30 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-04-09 16:57:30 ----A---- C:\Windows\system32\wow64win.dll
2014-04-09 16:57:30 ----A---- C:\Windows\system32\wow64cpu.dll
2014-04-09 16:57:30 ----A---- C:\Windows\system32\wow64.dll
2014-04-09 16:57:30 ----A---- C:\Windows\system32\ntvdm64.dll
2014-04-09 16:57:30 ----A---- C:\Windows\system32\kernel32.dll
2014-04-09 16:57:29 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-03-17 20:15:03 ----D---- C:\ProgramData\SplitMediaLabs
2014-03-17 20:11:39 ----D---- C:\Users\Milan\AppData\Roaming\SplitMediaLabs
2014-03-13 22:37:59 ----A---- C:\Windows\SYSWOW64\wer.dll
2014-03-13 22:37:59 ----A---- C:\Windows\system32\wer.dll
2014-03-13 22:37:58 ----A---- C:\Windows\system32\wwansvc.dll
2014-03-13 22:37:57 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-03-13 22:37:57 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-03-13 22:37:57 ----A---- C:\Windows\system32\win32k.sys
2014-03-13 22:37:57 ----A---- C:\Windows\system32\iertutil.dll
2014-03-13 22:37:57 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-03-13 22:37:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-03-13 22:37:56 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-03-13 22:37:56 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-03-13 22:37:55 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-03-13 22:37:55 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-03-13 22:37:55 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-03-13 22:37:55 ----A---- C:\Windows\system32\urlmon.dll
2014-03-13 22:37:55 ----A---- C:\Windows\system32\iernonce.dll
2014-03-13 22:37:54 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-03-13 22:37:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-03-13 22:37:54 ----A---- C:\Windows\system32\msfeeds.dll
2014-03-13 22:37:54 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-03-13 22:37:53 ----A---- C:\Windows\system32\iesetup.dll
2014-03-13 22:37:53 ----A---- C:\Windows\system32\ie4uinit.exe
2014-03-13 22:37:52 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-03-13 22:37:52 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-03-13 22:37:52 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-03-13 22:37:52 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-03-13 22:37:52 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-03-13 22:37:52 ----A---- C:\Windows\system32\jsproxy.dll
2014-03-13 22:37:52 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-03-13 22:37:51 ----A---- C:\Windows\system32\ieui.dll
2014-03-13 22:37:51 ----A---- C:\Windows\system32\ieframe.dll
2014-03-13 22:37:50 ----A---- C:\Windows\system32\jscript9diag.dll
2014-03-13 22:37:50 ----A---- C:\Windows\system32\ieUnatt.exe
2014-03-13 22:37:49 ----A---- C:\Windows\system32\wininet.dll
2014-03-13 22:37:49 ----A---- C:\Windows\system32\jscript9.dll
2014-03-13 22:37:49 ----A---- C:\Windows\system32\ieapfltr.dll
2014-03-13 22:37:48 ----A---- C:\Windows\system32\msrating.dll
2014-03-13 22:37:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-13 22:37:20 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-03-13 22:37:20 ----A---- C:\Windows\system32\qedit.dll
2014-03-13 22:37:06 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-03-13 22:37:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-03-10 20:11:04 ----D---- C:\Program Files (x86)\NHL 12
2014-03-06 22:27:33 ----D---- C:\Program Files (x86)\Euro Truck Simulator 2
2014-03-04 16:56:39 ----D---- C:\Program Files (x86)\South park The Stick Of Truth
2014-02-28 00:28:40 ----D---- C:\Windows\Migration
2014-02-27 17:08:49 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2014-02-21 22:38:51 ----D---- C:\Users\Milan\AppData\Roaming\NVIDIA
2014-02-18 20:18:35 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-02-18 20:16:52 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-02-18 20:12:29 ----D---- C:\ProgramData\NVIDIA
2014-02-18 20:11:41 ----A---- C:\Windows\system32\nvshext.dll
2014-02-18 20:11:40 ----A---- C:\Windows\system32\nvvsvc.exe
2014-02-18 20:11:40 ----A---- C:\Windows\system32\nvsvcr.dll
2014-02-18 20:11:40 ----A---- C:\Windows\system32\nvsvc64.dll
2014-02-18 20:11:40 ----A---- C:\Windows\system32\nvmctray.dll
2014-02-18 20:11:40 ----A---- C:\Windows\system32\nvcpl.dll
2014-02-18 20:09:36 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-02-18 20:09:36 ----A---- C:\Windows\system32\OpenCL.dll
2014-02-18 19:56:34 ----A---- C:\Windows\system32\nvhdap64.dll
2014-02-18 19:56:33 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2014-02-18 19:56:33 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2014-02-18 19:56:32 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-02-18 19:56:32 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-02-18 19:56:32 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-02-18 19:56:32 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-02-18 19:56:32 ----A---- C:\Windows\system32\nvopencl.dll
2014-02-18 19:56:32 ----A---- C:\Windows\system32\nvoglv64.dll
2014-02-18 19:56:31 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-02-18 19:56:31 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-02-18 19:56:31 ----A---- C:\Windows\system32\NvIFR64.dll
2014-02-18 19:56:31 ----A---- C:\Windows\system32\NvFBC64.dll
2014-02-18 19:56:31 ----A---- C:\Windows\system32\nvdispgenco6433489.dll
2014-02-18 19:56:31 ----A---- C:\Windows\system32\nvdispco6433489.dll
2014-02-18 19:56:31 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-02-18 19:56:30 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-02-18 19:56:30 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-02-18 19:56:30 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-02-18 19:56:30 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-02-18 19:56:30 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-02-18 19:56:30 ----A---- C:\Windows\system32\nvcuvid.dll
2014-02-18 19:56:30 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-02-18 19:56:30 ----A---- C:\Windows\system32\nvcuda.dll
2014-02-18 19:56:26 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-02-18 19:56:26 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-02-18 19:56:26 ----A---- C:\Windows\system32\nvcompiler.dll
2014-02-18 19:56:26 ----A---- C:\Windows\system32\nvapi64.dll
2014-02-12 23:32:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-02-12 23:32:03 ----A---- C:\Windows\system32\vbscript.dll
2014-02-12 16:18:38 ----A---- C:\Windows\system32\msxml3.dll
2014-02-12 16:18:37 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-02-12 16:18:37 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-02-12 16:18:37 ----A---- C:\Windows\system32\msxml3r.dll
2014-02-12 16:18:05 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-02-12 16:18:05 ----A---- C:\Windows\system32\RMActivate.exe
2014-02-12 16:18:03 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-02-12 16:18:02 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-02-12 16:18:01 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-02-12 16:18:01 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 16:18:00 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 16:17:58 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-02-12 16:17:58 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-02-12 16:17:58 ----A---- C:\Windows\system32\secproc_isv.dll
2014-02-12 16:17:57 ----A---- C:\Windows\system32\secproc.dll
2014-02-12 16:17:57 ----A---- C:\Windows\system32\msdrm.dll
2014-02-12 16:17:56 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-02-12 16:17:56 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-02-12 16:17:56 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-02-12 16:17:55 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-02-12 16:17:55 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-02-12 16:17:55 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 16:17:39 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-12 16:17:39 ----A---- C:\Windows\system32\d3d10warp.dll
2014-02-12 16:17:38 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-02-12 16:17:38 ----A---- C:\Windows\system32\d2d1.dll
2014-02-11 21:43:28 ----D---- C:\Program Files (x86)\Handball 12
2014-02-09 00:37:34 ----A---- C:\Windows\system32\xvidvfw.dll
2014-02-09 00:37:30 ----A---- C:\Windows\system32\xvidcore.dll
2014-02-09 00:37:30 ----A---- C:\Windows\system32\ff_vfw.dll
2014-02-08 21:17:28 ----D---- C:\battlescape
2014-02-01 23:57:45 ----D---- C:\Program Files (x86)\Cok Free Auto Typer
2014-01-31 22:05:32 ----D---- C:\ProgramData\HtmlvalidAtOr
2014-01-31 22:05:31 ----D---- C:\ProgramData\mcibmidehmhgnjbfhggfpdianjgfnfhm
2014-01-28 17:49:08 ----D---- C:\NVIDIA
2014-01-28 17:40:18 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-01-28 17:40:18 ----A---- C:\Windows\system32\nvspcap64.dll
2014-01-28 17:40:12 ----D---- C:\ProgramData\NVIDIA Corporation
2014-01-28 17:38:58 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-01-28 17:38:55 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-01-28 17:38:55 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-01-28 17:38:55 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-01-28 17:38:46 ----D---- C:\Program Files\NVIDIA Corporation
2014-01-25 21:00:07 ----D---- C:\Program Files (x86)\RAR Password Unlocker
2014-01-25 14:50:52 ----D---- C:\Program Files (x86)\DriverTurbo
2014-01-25 14:50:14 ----D---- C:\Users\Milan\AppData\Roaming\DriverTurbo
2014-01-24 20:33:44 ----D---- C:\Program Files (x86)\BlueStacks
2014-01-24 20:33:17 ----D---- C:\ProgramData\BlueStacksSetup
2014-01-24 20:33:11 ----D---- C:\ProgramData\BlueStacks
2014-01-16 22:44:19 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-01-16 22:39:20 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\url.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-01-16 22:39:12 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-01-16 22:39:12 ----A---- C:\Windows\system32\elshyph.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-01-16 22:39:11 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\wextract.exe
2014-01-16 22:39:11 ----A---- C:\Windows\system32\webcheck.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\url.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-01-16 22:39:11 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-16 22:39:11 ----A---- C:\Windows\system32\pngfilt.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\occache.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\msls31.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\mshtmler.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\mshtmled.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\mshta.exe
2014-01-16 22:39:11 ----A---- C:\Windows\system32\msfeedssync.exe
2014-01-16 22:39:11 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\licmgr10.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\jsIntl.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\jscript.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\inseng.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\imgutil.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\iexpress.exe
2014-01-16 22:39:11 ----A---- C:\Windows\system32\iesysprep.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\iepeers.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\iedkcs32.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\ieapfltr.dat
2014-01-16 22:39:11 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\icardie.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\dxtrans.dll
2014-01-16 22:39:11 ----A---- C:\Windows\system32\dxtmsft.dll
2014-01-15 20:33:13 ----D---- C:\Program Files (x86)\Fraps
2014-01-15 17:06:27 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-15 17:06:27 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-15 17:06:27 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-15 17:06:27 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-15 17:06:27 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-15 17:06:27 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-15 17:06:27 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-15 17:06:23 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-14 20:07:08 ----D---- C:\ProgramData\LogMeIn

======List of files/folders modified in the last 3 months======

2014-04-11 13:03:55 ----D---- C:\Windows\temp
2014-04-11 13:03:48 ----RD---- C:\Program Files
2014-04-11 13:02:49 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2014-04-11 13:00:31 ----RD---- C:\Program Files (x86)
2014-04-11 12:50:18 ----D---- C:\Windows\system32\drivers
2014-04-11 12:50:00 ----D---- C:\ProgramData\Malwarebytes
2014-04-11 11:23:11 ----D---- C:\Windows\system32\config
2014-04-11 11:10:42 ----SHD---- C:\Windows\Installer
2014-04-10 14:52:16 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2014-04-10 01:23:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-04-09 21:11:37 ----D---- C:\Windows\system32\DriverStore
2014-04-09 21:06:26 ----D---- C:\Windows\winsxs
2014-04-09 21:02:30 ----D---- C:\Windows\SysWOW64
2014-04-09 21:02:29 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-04-09 21:02:29 ----D---- C:\Windows\System32
2014-04-09 21:02:28 ----D---- C:\Windows\system32\nl-NL
2014-04-09 21:02:26 ----D---- C:\Windows\AppPatch
2014-04-09 17:52:18 ----D---- C:\ProgramData\Microsoft Help
2014-04-09 17:50:51 ----D---- C:\Program Files (x86)\Common Files
2014-04-09 17:47:16 ----D---- C:\Windows\system32\MRT
2014-04-09 17:47:13 ----A---- C:\Windows\system32\MRT.exe
2014-04-09 17:45:28 ----SHD---- C:\System Volume Information
2014-04-09 16:57:14 ----D---- C:\Windows\system32\catroot2
2014-04-09 16:57:14 ----D---- C:\Windows\system32\catroot
2014-04-09 01:08:03 ----D---- C:\Users\Milan\AppData\Roaming\Skype
2014-04-09 00:34:09 ----RD---- C:\Program Files (x86)\Skype
2014-04-09 00:34:02 ----D---- C:\ProgramData\Skype
2014-04-06 23:41:09 ----D---- C:\ProgramData\Origin
2014-04-06 23:40:46 ----D---- C:\Program Files (x86)\Origin
2014-04-04 22:49:25 ----D---- C:\Windows\Prefetch
2014-04-02 14:25:58 ----D---- C:\Windows\inf
2014-04-02 14:25:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-03-18 18:26:13 ----D---- C:\Windows\rescache
2014-03-17 20:20:10 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2014-03-17 20:15:03 ----D---- C:\ProgramData
2014-03-14 17:12:21 ----D---- C:\Program Files\Internet Explorer
2014-03-14 17:12:21 ----D---- C:\Program Files (x86)\Internet Explorer
2014-03-14 17:12:10 ----D---- C:\Program Files\Microsoft Silverlight
2014-03-14 17:12:07 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-03-08 23:07:36 ----D---- C:\Windows\Tasks
2014-03-08 23:07:36 ----D---- C:\Windows\system32\wfp
2014-03-08 23:07:36 ----D---- C:\Windows
2014-03-08 23:07:33 ----D---- C:\ProgramData\OptimizerPro1
2014-03-08 23:07:33 ----D---- C:\ProgramData\McAfee Security Scan
2014-03-08 23:07:33 ----D---- C:\ProgramData\DAEMON Tools Pro
2014-03-08 23:07:23 ----D---- C:\Windows\system32\wbem
2014-03-08 23:07:23 ----D---- C:\Windows\registration
2014-03-08 14:25:57 ----D---- C:\Program Files\McAfee Security Scan
2014-03-04 22:02:50 ----D---- C:\Program Files (x86)\Google
2014-03-01 17:19:28 ----D---- C:\Windows\Microsoft.NET
2014-03-01 12:52:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-28 00:33:25 ----RSD---- C:\Windows\assembly
2014-02-28 00:28:56 ----D---- C:\Windows\SYSWOW64\en-US
2014-02-28 00:28:56 ----D---- C:\Windows\system32\en-US
2014-02-28 00:28:40 ----SD---- C:\ProgramData\Microsoft
2014-02-18 20:17:50 ----D---- C:\Temp
2014-02-18 20:11:15 ----D---- C:\Windows\Help
2014-02-15 19:46:48 ----D---- C:\Windows\SYSWOW64\Adobe
2014-02-15 17:59:26 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2014-02-11 21:13:51 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-02-09 00:38:06 ----A---- C:\Windows\NeroDigital.ini
2014-02-09 00:05:44 ----AD---- C:\ProgramData\Temp
2014-02-02 15:29:47 ----RSD---- C:\Windows\Fonts
2014-01-31 22:05:32 ----D---- C:\ProgramData\39b559e409962429
2014-01-31 22:05:31 ----HD---- C:\Windows\system32\GroupPolicy
2014-01-31 22:05:31 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2014-01-28 18:57:31 ----A---- C:\Windows\ntbtlog.txt
2014-01-17 17:20:10 ----D---- C:\Windows\SYSWOW64\migration
2014-01-17 17:20:04 ----D---- C:\Windows\PolicyDefinitions
2014-01-17 17:20:03 ----D---- C:\Windows\system32\migration
2014-01-16 22:44:19 ----D---- C:\Windows\Logs
2014-01-14 17:56:21 ----D---- C:\Program Files (x86)\Steam

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-05 408600]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 ALE_NF;Norman Network Filter ALE driver; \??\C:\Windows\system32\drivers\ale7_nf64.sys [2013-12-06 133152]
R1 appdrv01;Application Driver (01); C:\Windows\System32\Drivers\appdrv01.sys [2012-07-21 3854000]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-09-26 283200]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
R1 NGS;Norman General Security Driver; \??\c:\program files\norman\ngs\bin\ngs64.sys [2014-02-04 23488]
R1 NPROSEC;Norman Security driver; \??\C:\Program Files\Norman\Ngs\Bin\nprosec64.sys [2013-08-16 41536]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [2014-01-20 115472]
R2 nregsec;Norman Registry Security driver; \??\C:\Program Files\Norman\Ngs\Bin\nregsec64.sys [2013-08-13 68792]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-04-07 1208320]
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-06-20 317480]
R3 LgBttPort;LGE Bluetooth TransPort; C:\Windows\system32\DRIVERS\lgbtpt64.sys [2009-09-29 16384]
R3 lgbusenum;LG Bluetooth Bus Enumerator; C:\Windows\system32\DRIVERS\lgbtbs64.sys [2009-09-29 14848]
R3 LGVMODEM;LGE Virtual Modem; C:\Windows\system32\DRIVERS\lgvmdm64.sys [2009-09-29 17408]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-04-03 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-04-11 119512]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-04-03 63192]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\Windows\system32\DRIVERS\mcdbus.sys [2009-02-24 255552]
R3 NETw1v64;Intel(R) Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\NETw1v64.sys [2009-07-21 7058432]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-06-19 272432]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
S1 SABKUTIL;SABKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SABKUTIL.sys []
S1 TKFWFV;nProtect Firewall Core Driver ; C:\Windows\system32\TKFWFV64.sys []
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 cxbu0x64;OMNIKEY 3x21; C:\Windows\system32\DRIVERS\cxbu0x64.sys [2013-08-19 187264]
S3 dump_wmimmc;dump_wmimmc; \??\C:\AeriaGames\WolfTeam\GameGuard\dump_wmimmc.sys []
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 48488]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-07-29 7345632]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2009-05-26 138752]
S3 KeDetective131;KeDetective131; \??\C:\Windows\system32\Drivers\KeDetective131.sys []
S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]
S3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv.sys [2013-11-27 42016]
S3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2013-12-06 35232]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-05-14 5435904]
S3 NPPTNT2;NPPTNT2; \??\C:\Windows\syswow64\npptNT2.sys [2005-01-02 4682]
S3 NvcMFlt;NvcMFlt; C:\Windows\system32\DRIVERS\nvcv64mf.sys [2013-09-16 59552]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 rak;rak; \??\C:\Users\Milan\Desktop\Games\Rakion\RakionIS\Bin\avital\rakion64.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-06-05 216064]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 SMARTMouseFilterx64;HID-compliant mouse; C:\Windows\system32\DRIVERS\SMARTMouseFilterx64.sys [2012-03-21 13168]
S3 SMARTVHidMiniVistaAmd64;SMART HID Device; C:\Windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [2012-03-21 16368]
S3 SMARTVTabletPCx64;SMART Virtual TabletPC; C:\Windows\system32\DRIVERS\SMARTVTabletPCx64.sys [2012-03-21 24944]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys []
S3 TKCtrl;TKCtrl; \??\C:\Windows\syswow64\TKCtrl2k64.sys []
S3 TKFsAc;TKFsAc; \??\C:\Windows\syswow64\TKFsAc2k64.sys []
S3 TKFsAv;TKFsAv; \??\C:\Windows\syswow64\TKFsAv2k64.sys []
S3 TKFsAvM;TKFsAvM; \??\C:\Windows\syswow64\TKFsAv64.sys []
S3 TKFsFt;TKFsFt; \??\C:\Windows\syswow64\TKFsFt2k64.sys []
S3 TkFsFtM;MiniFilter Driver; C:\Windows\syswow64\TKFsFt64.sys []
S3 TKFWVT;TKFWVT; \??\C:\Windows\syswow64\TKFWVT64.sys []
S3 TkIdsVt;TkIdsVt; \??\C:\Windows\syswow64\TkIdsVt64.sys []
S3 TKPcFt;TKPcFt; \??\C:\Windows\syswow64\TKPcFtCb64.sys []
S3 TKRgAc;TKRgAc; \??\C:\Windows\syswow64\TKRgAc2k64.sys []
S3 TKRgFt;TKRgFt; \??\C:\Windows\syswow64\TKRgFtXp64.sys []
S3 TKTool;TKTool; \??\C:\Windows\syswow64\TKTool2k64.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2010-01-21 17920]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2010-01-21 27648]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-03-28 16896]
R2 apache2.4;apache2.4; C:\xampp\apache\bin\httpd.exe [2012-06-06 22016]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [2014-01-20 385808]
R2 eLoggerSvc6;Norman eLogger Service; C:\Program Files\Norman\Npm\Bin\elogsvc.exe [2013-03-04 104920]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-08-06 844320]
R2 Greg_Service;GRegService; C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-05 354840]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-02-26 377616]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-04-03 1809720]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-04-03 857912]
R2 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-07 311592]
R2 mysql;mysql; C:\xampp\mysql\bin\mysqld.exe [2012-06-29 8180224]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-10 877864]
R2 NitroReaderDriverReadSpool;NitroPDFReaderDriverCreatorReadSpool; C:\Program Files\Common Files\Nitro PDF\Reader\1.0\NitroPDFReaderDriverServicex64.exe [2011-02-05 341296]
R2 NNFSVC;Norman Network Filtering service; C:\Program Files\Norman\Ngs\Bin\Nnf.exe [2013-12-06 279592]
R2 Norman ZANDA;Norman ZANDA; C:\Program Files\Norman\Npm\Bin\Zanda.exe [2013-03-20 433504]
R2 NPROSECSVC;Norman Security service; C:\Program Files\Norman\Ngs\Bin\Nprosec.exe [2013-08-16 120456]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-01-21 1593632]
R2 NVOY;Norman Resource Provider (NICCA); C:\Program Files\Norman\Npm\Bin\Nvoy.exe [2013-06-27 246560]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-01-21 16939296]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-02-08 923936]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-01-04 793048]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-08-31 76888]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-11 193824]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-02-08 411936]
R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-10-23 641352]
R3 Norman NJeeves;Norman NJeeves; C:\Program Files\Norman\Npm\Bin\Njeeves.exe [2013-02-13 150120]
R3 nsesvc;Norman Scanner Engine Service; C:\Program Files\Norman\Nse\Bin\NSESVC.EXE [2013-02-27 427288]
R3 Scheduler;Norman Scheduler Service; C:\Program Files\Norman\Npm\Bin\scheduler.exe [2013-03-13 402072]
S2 appdrvrem01;Application Driver Auto Removal Service (01); C:\Windows\System32\appdrvrem01.exe [2012-07-21 551896]
S2 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files (x86)\BlueStacks\HD-Service.exe [2014-01-20 402192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-05-15 135664]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-02-26 2224976]
S2 McShield;McAfee Real-time Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe []
S2 NHS;Norman Hash Server; C:\Program Files\Norman\Nvc\bin\nhs.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2012-02-12 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-10 257712]
S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 FileZillaServer;FileZillaServer; C:\xampp\filezillaftp\filezillaserver.exe [2012-05-11 632320]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe []
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-05-15 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-19 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-01 111616]
S3 McAfee ScanAndRepair Svc;McAfee ScanAndRepair Svc; C:\Program Files (x86)\McAfeeScanAndRepair\McAfeeScanRepairSvc.exe []
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [2014-01-16 289256]
S3 McSysmon;McAfee SystemGuards; C:\PROGRA~2\McAfee\VIRUSS~1\mcsysmon.exe []
S3 NIG;Norman Intrusion Guard; C:\Program Files\Norman\nig\bin\nigsvc32.exe [2013-09-23 593128]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2012-10-15 3882096]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 nvcoas;Norman Virus Control on-access component; C:\Program Files\Norman\Nvc\Bin\nvcoas.exe [2013-01-21 320696]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [2006-01-07 69632]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-01-07 569768]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------