Prosim o pomoct nejak se mi zasekava pocitac posledni dobou

Zpráva

sasa.eu · #1 Příspěvek od **sasa.eu** » 21 led 2016 10:44

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sasha at 2016-01-21 10:41:45
Microsoft Windows 8.1
System drive C: has 789 GB (84%) free of 937 GB
Total RAM: 8083 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:41:51, on 21. 1. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe
C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.7\deploy\LoLLauncher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.47\deploy\LoLPatcher.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.182\deploy\LolClient.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Sasha.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Browsing Protection by F-Secure - {45BBE08D-81C5-4A67-AF20-B2A077C67747} - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll
O2 - BHO: SafeSearchBHO - {690EF1CF-5775-4CB3-A5B8-85A63FD0262B} - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: F-Secure Search Toolbar - {B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [F-Secure Hoster (45329)] "C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -app -hosterid:1
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Sasha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - c:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: F-Secure Dll Hoster (fshoster) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem49.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (ibtsiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 15409 bytes

======Listing Processes======

wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
winlogon.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\vcsFPService.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 106999555120
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"c:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -hosterid:0
"C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe"
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE" /service /stopevent=592 /ipcexch=632
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
"c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:3448
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE"
"C:\WINDOWS\system32\GWX\GWX.exe"
oid 1.3.6.1.4.1.2213.11.1.27.64 HosterGroupType 0
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\fssm32.exe" 3 916 932 936
C:\Windows\System32\skydrive.exe -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
igfxEM.exe
igfxHK.exe
igfxTray.exe
dashost.exe {e2343a93-0df3-44e2-a358e4c76d1ff4da}
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
szndesktop.exe default start
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
"C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
/fmw.trayonly
"C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -app -hosterid:1
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE" /splash
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
explorer.exe
"C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe" updateandrun lol_launcher LoLLauncher.exe
LoLLauncher.exe
"C:/Riot Games/League of Legends/RADS/projects/lol_patcher/releases/0.0.0.47/deploy/LoLPatcher.exe"
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cachedir="C:\Users\Sasha\AppData\Local\Steam\htmlcache" -steampid=4116 -buildid=1451690000 -steamid="0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:/Riot Games/League of Legends/RADS/projects/lol_air_client/releases/0.0.1.182/deploy//LolClient.exe" -runtime .\ -nodebug META-INF\AIR\application.xml .\ -- 8393
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4864.0.170494170\1577613155" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,23,51 --gpu-vendor-id=0x1002 --gpu-device-id=0x6901 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.301.1002.1004 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledBadPacketLoss/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterSbTypes/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4864.2.727913093\328575248" --font-cache-shared-handle=2372 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledBadPacketLoss/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterSbTypes/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4864.3.935537855\967932266" --font-cache-shared-handle=2464 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledBadPacketLoss/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterSbTypes/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4864.4.863588318\1220137292" --font-cache-shared-handle=2632 /prefetch:673131151
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k GPSvcGroup

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledBadPacketLoss/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterSbTypes/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4864.14.28231576\2116176167" --font-cache-shared-handle=4740 /prefetch:673131151

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 556 560 568 65536 564
"C:\Users\Sasha\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_286_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForSasha.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSasha (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45BBE08D-81C5-4A67-AF20-B2A077C67747}]
Browsing Protection by F-Secure - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https64.dll [2016-01-11 1288744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{690EF1CF-5775-4CB3-A5B8-85A63FD0262B}]
F-Secure Search - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch64.dll [2015-11-19 503848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08 2134656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45BBE08D-81C5-4A67-AF20-B2A077C67747}]
Browsing Protection by F-Secure - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll [2016-01-11 1058856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{690EF1CF-5775-4CB3-A5B8-85A63FD0262B}]
F-Secure Search - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll [2015-11-19 367656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08 1725056]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-12-20 414920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - F-Secure Search Toolbar - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch64.dll [2015-11-19 503848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - F-Secure Search Toolbar - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll [2015-11-19 367656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-06-25 36352]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-11-11 7659224]
"ISCT Tray"=c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-08-14 5860656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-12-14 3013712]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-17 50385536]
"cz.seznam.software.autoupdate"=C:\Users\Sasha\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-10-03 425608]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-07 767176]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2014-04-01 126240]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-01-12 179624]
"F-Secure Hoster (45329)"=C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe [2015-07-16 187432]
"F-Secure Manager"=C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE [2015-10-08 310312]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2015-04-28 2086240]
"DelaypluginInstall"=C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktopChanges"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-21 10:41:45 ----D---- C:\rsit
2016-01-21 10:41:45 ----D---- C:\Program Files\trend micro
2016-01-14 00:34:13 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-14 00:34:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-14 00:34:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-01-14 00:34:10 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-01-14 00:34:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-14 00:34:06 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-01-14 00:33:12 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-01-14 00:33:12 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-14 00:33:07 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-01-14 00:33:07 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-14 00:33:07 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-01-14 00:33:06 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-14 00:33:05 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-01-14 00:33:03 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\system32\devenum.dll
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-01-14 00:32:58 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-01-14 00:32:57 ----AC---- C:\WINDOWS\system32\SysFxUI.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-01-14 00:32:40 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\certcli.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-14 00:32:37 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-01-14 00:32:37 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-01-14 00:32:32 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-14 00:32:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-14 00:32:29 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-14 00:32:09 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-01-14 00:32:09 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-12 18:47:25 ----D---- C:\ProgramData\Steam
2016-01-12 18:03:40 ----D---- C:\Program Files (x86)\Total War ROME II
2016-01-07 17:42:26 ----D---- C:\Users\Sasha\AppData\Roaming\The Creative Assembly
2016-01-07 17:42:02 ----A---- C:\WINDOWS\SYSWOW64\steam_api.dll
2016-01-07 17:41:42 ----D---- C:\ProgramData\Logs
2016-01-07 17:34:08 ----D---- C:\Users\Sasha\AppData\Roaming\Solvusoft
2016-01-07 17:00:19 ----D---- C:\Hry
2016-01-05 20:25:53 ----A---- C:\WINDOWS\system32\SynTPCo20.dll
2016-01-05 20:25:52 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2016-01-05 20:25:52 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2016-01-05 20:25:39 ----A---- C:\WINDOWS\SYSWOW64\SynCom.dll
2016-01-05 20:25:39 ----A---- C:\WINDOWS\system32\SynCOM.dll
2016-01-05 16:47:38 ----D---- C:\Program Files (x86)\PokerStars.EU
2016-01-03 21:41:03 ----D---- C:\Program Files (x86)\Google
2016-01-02 19:19:28 ----D---- C:\Program Files (x86)\Seznam.cz
2016-01-02 19:19:06 ----D---- C:\Users\Sasha\AppData\Roaming\Seznam.cz
2016-01-02 19:19:03 ----D---- C:\Users\Sasha\AppData\Roaming\Wondershare Video Converter Pro
2016-01-02 19:18:27 ----A---- C:\WINDOWS\SYSWOW64\WSCM64.dll
2016-01-02 19:18:02 ----D---- C:\ProgramData\Wondershare Video Converter Pro
2016-01-02 19:17:50 ----D---- C:\ProgramData\Wondershare
2016-01-02 19:17:50 ----D---- C:\Program Files (x86)\Wondershare
2015-12-27 12:32:19 ----A---- C:\WINDOWS\system32\drivers\fsbts.sys
2015-12-27 12:29:25 ----A---- C:\WINDOWS\prodsett_copy.ini
2015-12-27 12:25:56 ----D---- C:\Program Files (x86)\UPC Smart Guard
2015-12-27 12:25:43 ----D---- C:\ProgramData\F-Secure

======List of files/folders modified in the last 1 month======

2016-01-21 10:41:45 ----RD---- C:\Program Files
2016-01-21 10:41:45 ----D---- C:\WINDOWS\Prefetch
2016-01-21 10:38:50 ----D---- C:\Users\Sasha\AppData\Roaming\Skype
2016-01-21 10:29:55 ----D---- C:\WINDOWS\Temp
2016-01-21 10:17:12 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-21 10:17:11 ----RSD---- C:\WINDOWS\assembly
2016-01-21 10:00:01 ----D---- C:\WINDOWS\system32\sru
2016-01-21 09:18:57 ----D---- C:\Program Files (x86)\Steam
2016-01-21 09:18:16 ----D---- C:\Windows
2016-01-20 16:49:38 ----D---- C:\WINDOWS\SysWOW64
2016-01-20 11:26:43 ----D---- C:\ProgramData\Hewlett-Packard
2016-01-20 11:04:32 ----SHD---- C:\WINDOWS\Installer
2016-01-20 11:04:31 ----D---- C:\Program Files (x86)\Hewlett-Packard
2016-01-20 11:04:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-01-20 11:02:26 ----RSD---- C:\WINDOWS\Fonts
2016-01-20 11:02:03 ----AD---- C:\SWSETUP
2016-01-20 03:28:34 ----SHD---- C:\System Volume Information
2016-01-19 22:59:27 ----D---- C:\WINDOWS\system32\config
2016-01-17 11:54:14 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-16 18:34:40 ----D---- C:\WINDOWS\rescache
2016-01-16 18:31:49 ----D---- C:\WINDOWS\system32\MRT
2016-01-16 18:31:26 ----RD---- C:\WINDOWS\System32
2016-01-16 18:31:26 ----D---- C:\WINDOWS\Inf
2016-01-16 18:31:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-16 18:28:57 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-16 10:51:50 ----D---- C:\WINDOWS\WinSxS
2016-01-16 10:51:41 ----RD---- C:\Program Files (x86)\Skype
2016-01-15 19:45:15 ----D---- C:\Program Files\Internet Explorer
2016-01-15 19:45:12 ----D---- C:\WINDOWS\system32\drivers
2016-01-15 19:45:08 ----SD---- C:\WINDOWS\system32\CompatTel
2016-01-15 19:45:08 ----D---- C:\WINDOWS\system32\appraiser
2016-01-15 19:45:08 ----D---- C:\WINDOWS\apppatch
2016-01-15 17:26:25 ----D---- C:\WINDOWS\CbsTemp
2016-01-15 00:14:59 ----D---- C:\WINDOWS\AppReadiness
2016-01-14 00:24:13 ----D---- C:\WINDOWS\system32\Tasks
2016-01-14 00:24:13 ----D---- C:\Program Files (x86)\Opera
2016-01-12 18:47:25 ----HD---- C:\ProgramData
2016-01-12 18:03:40 ----RD---- C:\Program Files (x86)
2016-01-12 12:11:45 ----D---- C:\WINDOWS\system32\catroot
2016-01-12 10:35:46 ----HD---- C:\Program Files\WindowsApps
2016-01-07 17:43:36 ----D---- C:\WINDOWS\Tasks
2016-01-06 15:24:45 ----SD---- C:\Users\Sasha\AppData\Roaming\Microsoft
2016-01-05 21:04:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-01-05 20:02:25 ----SHD---- C:\$RECYCLE.BIN
2016-01-05 19:45:13 ----D---- C:\Intel
2016-01-05 14:12:19 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-02 19:18:51 ----D---- C:\Program Files (x86)\Common Files
2015-12-30 09:18:07 ----D---- C:\WINDOWS\system32\catroot2
2015-12-22 16:58:30 ----D---- C:\ProgramData\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fsbts;fsbts; C:\WINDOWS\system32\Drivers\fsbts.sys [2016-01-12 75448]
R0 hpdskflt;@oem49.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-06-07 670056]
R0 PinFile;PinFile; C:\WINDOWS\system32\DRIVERS\PinFile.sys [2014-12-05 49856]
R0 SDDisk2K;SDDisk2K; C:\WINDOWS\system32\DRIVERS\SDDisk2K.sys [2014-12-05 228544]
R0 SDDToki;SDDToki; C:\WINDOWS\system32\DRIVERS\SDDToki.sys [2014-12-05 131264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\HIPS\drivers\fshs.sys [2015-12-27 81984]
R1 fsvista;F-Secure Vista Support Driver; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [2015-10-08 13352]
R3 Accelerometer;@oem49.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-11-08 16751616]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-11-08 579584]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 dtlitescsibus;@oem55.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-15 30264]
R3 dtliteusbbus;@oem56.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-15 46392]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [2015-12-27 208424]
R3 fsni;fsni; \??\C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\fsni64.sys [2016-01-11 97832]
R3 ibtusb;@oem41.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2014-11-04 225008]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-10-28 4850616]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2014-05-27 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2014-05-27 22728]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2014-05-27 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-11-12 4275288]
R3 ISCT;@oem25.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD.sys [2014-05-27 44744]
R3 iwdbus;@oem38.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-10-17 30512]
R3 MEIx64;@oem22.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 NETwNb64;@oem33.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [2014-10-17 3486488]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem40.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem47.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2014-03-22 476888]
R3 SPUVCbv;@oem12.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [2014-10-07 674592]
R3 SynTP;@oem60.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\System32\drivers\SynTP.sys [2016-01-05 580264]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2015-11-23 31144]
S3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem57.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem37.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-10-17 42288]
S3 IntcDAud;@oem30.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-10-30 454416]
S3 RSUSBSTOR;@oem42.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2014-03-27 272600]
S3 RSUSBVSTOR;@oem43.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2014-03-27 331992]
S3 ssudmdm;@oem58.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-11-08 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2014-10-29 38792]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-01-12 1048488]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-01-08 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-01-08 1773696]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-07-28 500048]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; c:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-09-23 638368]
R2 fshoster;F-Secure Dll Hoster; C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe [2015-07-16 187432]
R2 FSORSPClient;F-Secure ORSP Client; C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe [2015-12-27 60456]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem49.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2013-07-23 43320]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-12-20 26168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-06-25 16232]
R2 ibtsiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2014-11-04 125168]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-10-28 329104]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-08-14 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-09-23 157088]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-09-04 292568]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2015-12-11 4377000]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2013-09-12 3221392]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 FSMA;F-Secure Management Agent; C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE [2015-10-08 216104]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20 269504]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-10-28 279952]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03 107848]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-09-23 268192]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 21 led 2016 17:59

Zdravím!
Nechápu, proč dáváte požadavek na čištění systému do sekce "Hardware". Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Zároveň přesouvám vlákno do správné sekce.

sasa.eu · #3 Příspěvek od **sasa.eu** » 28 led 2016 02:12

Omlouvam se

# AdwCleaner v5.031 - Logfile created 28/01/2016 at 02:07:20
# Updated 25/01/2016 by Xplode
# Database : 2016-01-25.3 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Sasha - MUJPC
# Running from : C:\Users\Sasha\Downloads\adwcleaner_5.031.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Users\Sasha\AppData\Roaming\RPEng
[-] Folder Deleted : C:\Users\Sasha\AppData\Roaming\Solvusoft

***** [ Files ] *****

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}

***** [ Web browsers ] *****

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [948 bytes] ##########

#4 Příspěvek od **Rudy** » 28 led 2016 17:52

Dejte nový log RSIT.

sasa.eu · #5 Příspěvek od **sasa.eu** » 29 led 2016 23:45

# AdwCleaner v5.031 - Logfile created 29/01/2016 at 23:44:06
# Updated 25/01/2016 by Xplode
# Database : 2016-01-25.3 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Sasha - MUJPC
# Running from : C:\Users\Sasha\Desktop\adwcleaner_5.031.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

***** [ Files ] *****

***** [ DLL ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [560 bytes] ##########

#6 Příspěvek od **Rudy** » 30 led 2016 11:24

Rudy píše:Dejte nový log RSIT.

sasa.eu · #7 Příspěvek od **sasa.eu** » 30 led 2016 11:36

# AdwCleaner v5.031 - Logfile created 30/01/2016 at 11:35:44
# Updated 25/01/2016 by Xplode
# Database : 2016-01-25.3 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Sasha - MUJPC
# Running from : C:\Users\Sasha\Desktop\adwcleaner_5.031.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

***** [ Files ] *****

***** [ DLL ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [560 bytes] ##########

#8 Příspěvek od **Rudy** » 30 led 2016 12:19

Stále dáváte log ADW. Já potřebuji RSIT. To je ten, který jste dal v 1. postu.

sasa.eu · #9 Příspěvek od **sasa.eu** » 31 led 2016 23:09

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sasha at 2016-01-31 23:08:01
Microsoft Windows 8.1
System drive C: has 786 GB (84%) free of 937 GB
Total RAM: 8083 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:08:14, on 31. 1. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Sasha.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Browsing Protection by F-Secure - {45BBE08D-81C5-4A67-AF20-B2A077C67747} - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll
O2 - BHO: SafeSearchBHO - {690EF1CF-5775-4CB3-A5B8-85A63FD0262B} - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: F-Secure Search Toolbar - {B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [F-Secure Hoster (45329)] "C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -app -hosterid:1
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Sasha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - c:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: F-Secure Dll Hoster (fshoster) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem49.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (ibtsiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 14737 bytes

======Listing Processes======

wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\windows\system32\vcsFPService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\WINDOWS\system32\WLANExt.exe 851449008704
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"c:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -hosterid:0
"C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE" /service /stopevent=608 /ipcexch=1060
"C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\fssm32.exe" 3 900 916 924
oid 1.3.6.1.4.1.2213.11.1.27.64 HosterGroupType 0
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
dashost.exe {43d6d6df-f3cc-46ca-830f359cdfdcbd7d}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2360
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
szndesktop.exe default start
"C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cachedir="C:\Users\Sasha\AppData\Local\Steam\htmlcache" -steampid=10228 -buildid=1451690000 -steamid="0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -app -hosterid:1
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
/fmw.trayonly
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE" /splash
"C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\wbem\WmiApSrv.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding

"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe120_ Global\UsGthrCtrlFltPipeMssGthrPipe120 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 556 560 568 65536 564
"C:\Users\Sasha\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_286_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForSasha.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSasha (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45BBE08D-81C5-4A67-AF20-B2A077C67747}]
Browsing Protection by F-Secure - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https64.dll [2016-01-11 1288744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{690EF1CF-5775-4CB3-A5B8-85A63FD0262B}]
F-Secure Search - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch64.dll [2015-11-19 503848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08 2134656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45BBE08D-81C5-4A67-AF20-B2A077C67747}]
Browsing Protection by F-Secure - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll [2016-01-11 1058856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{690EF1CF-5775-4CB3-A5B8-85A63FD0262B}]
F-Secure Search - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll [2015-11-19 367656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08 1725056]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-12-20 414920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - F-Secure Search Toolbar - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch64.dll [2015-11-19 503848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - F-Secure Search Toolbar - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll [2015-11-19 367656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-06-25 36352]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-11-11 7659224]
"ISCT Tray"=c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-08-14 5860656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-12-14 3013712]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-17 50385536]
"cz.seznam.software.autoupdate"=C:\Users\Sasha\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-10-03 425608]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-07 767176]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2014-04-01 126240]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-01-12 179624]
"F-Secure Hoster (45329)"=C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe [2015-07-16 187432]
"F-Secure Manager"=C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE [2015-10-08 310312]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2015-04-28 2086240]
"DelaypluginInstall"=C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktopChanges"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-28 02:04:33 ----D---- C:\AdwCleaner
2016-01-25 02:45:43 ----D---- C:\WINDOWS\Minidump
2016-01-21 10:41:45 ----D---- C:\rsit
2016-01-21 10:41:45 ----D---- C:\Program Files\trend micro
2016-01-14 00:34:13 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-14 00:34:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-14 00:34:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-01-14 00:34:10 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-01-14 00:34:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-14 00:34:06 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-01-14 00:33:12 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-01-14 00:33:12 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-14 00:33:07 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-01-14 00:33:07 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-14 00:33:07 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-01-14 00:33:06 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-14 00:33:05 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-01-14 00:33:03 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\system32\devenum.dll
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-01-14 00:32:58 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-01-14 00:32:57 ----AC---- C:\WINDOWS\system32\SysFxUI.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-01-14 00:32:40 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\certcli.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-14 00:32:37 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-01-14 00:32:37 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-01-14 00:32:32 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-14 00:32:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-14 00:32:29 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-14 00:32:09 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-01-14 00:32:09 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-12 18:47:25 ----D---- C:\ProgramData\Steam
2016-01-12 18:03:40 ----D---- C:\Program Files (x86)\Total War ROME II
2016-01-07 17:42:26 ----D---- C:\Users\Sasha\AppData\Roaming\The Creative Assembly
2016-01-07 17:42:02 ----A---- C:\WINDOWS\SYSWOW64\steam_api.dll
2016-01-07 17:41:42 ----D---- C:\ProgramData\Logs
2016-01-07 17:00:19 ----D---- C:\Hry
2016-01-05 20:25:53 ----A---- C:\WINDOWS\system32\SynTPCo20.dll
2016-01-05 20:25:52 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2016-01-05 20:25:52 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2016-01-05 20:25:39 ----A---- C:\WINDOWS\SYSWOW64\SynCom.dll
2016-01-05 20:25:39 ----A---- C:\WINDOWS\system32\SynCOM.dll
2016-01-05 16:47:38 ----D---- C:\Program Files (x86)\PokerStars.EU
2016-01-03 21:41:03 ----D---- C:\Program Files (x86)\Google
2016-01-02 19:19:28 ----D---- C:\Program Files (x86)\Seznam.cz
2016-01-02 19:19:06 ----D---- C:\Users\Sasha\AppData\Roaming\Seznam.cz
2016-01-02 19:19:03 ----D---- C:\Users\Sasha\AppData\Roaming\Wondershare Video Converter Pro
2016-01-02 19:18:27 ----A---- C:\WINDOWS\SYSWOW64\WSCM64.dll
2016-01-02 19:18:02 ----D---- C:\ProgramData\Wondershare Video Converter Pro
2016-01-02 19:17:50 ----D---- C:\ProgramData\Wondershare
2016-01-02 19:17:50 ----D---- C:\Program Files (x86)\Wondershare

======List of files/folders modified in the last 1 month======

2016-01-31 23:07:03 ----D---- C:\WINDOWS\Temp
2016-01-31 23:04:43 ----D---- C:\Users\Sasha\AppData\Roaming\Skype
2016-01-31 23:00:00 ----D---- C:\WINDOWS\system32\sru
2016-01-31 20:57:31 ----SHD---- C:\WINDOWS\Installer
2016-01-31 20:52:54 ----RD---- C:\Program Files (x86)
2016-01-31 20:52:54 ----D---- C:\WINDOWS\Prefetch
2016-01-31 20:52:47 ----D---- C:\WINDOWS\Tasks
2016-01-31 18:20:02 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-31 18:09:15 ----D---- C:\Program Files (x86)\Steam
2016-01-31 15:21:58 ----D---- C:\Windows
2016-01-31 15:11:31 ----RD---- C:\WINDOWS\System32
2016-01-31 15:11:31 ----D---- C:\WINDOWS\Inf
2016-01-31 15:11:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-29 18:41:24 ----SHD---- C:\System Volume Information
2016-01-28 22:06:41 ----D---- C:\WINDOWS\system32\NDF
2016-01-22 00:25:04 ----D---- C:\Program Files (x86)\Opera
2016-01-22 00:25:03 ----D---- C:\WINDOWS\system32\Tasks
2016-01-21 10:41:45 ----RD---- C:\Program Files
2016-01-21 10:17:11 ----RSD---- C:\WINDOWS\assembly
2016-01-20 16:49:38 ----D---- C:\WINDOWS\SysWOW64
2016-01-20 11:26:43 ----D---- C:\ProgramData\Hewlett-Packard
2016-01-20 11:04:31 ----D---- C:\Program Files (x86)\Hewlett-Packard
2016-01-20 11:04:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-01-20 11:02:26 ----RSD---- C:\WINDOWS\Fonts
2016-01-20 11:02:03 ----AD---- C:\SWSETUP
2016-01-19 22:59:27 ----D---- C:\WINDOWS\system32\config
2016-01-17 11:54:14 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-16 18:34:40 ----D---- C:\WINDOWS\rescache
2016-01-16 18:31:49 ----D---- C:\WINDOWS\system32\MRT
2016-01-16 18:28:57 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-16 10:51:50 ----D---- C:\WINDOWS\WinSxS
2016-01-16 10:51:41 ----RD---- C:\Program Files (x86)\Skype
2016-01-15 19:45:15 ----D---- C:\Program Files\Internet Explorer
2016-01-15 19:45:12 ----D---- C:\WINDOWS\system32\drivers
2016-01-15 19:45:08 ----SD---- C:\WINDOWS\system32\CompatTel
2016-01-15 19:45:08 ----D---- C:\WINDOWS\system32\appraiser
2016-01-15 19:45:08 ----D---- C:\WINDOWS\apppatch
2016-01-15 17:26:25 ----D---- C:\WINDOWS\CbsTemp
2016-01-15 00:14:59 ----D---- C:\WINDOWS\AppReadiness
2016-01-12 18:47:25 ----HD---- C:\ProgramData
2016-01-12 12:11:45 ----D---- C:\WINDOWS\system32\catroot
2016-01-12 10:35:46 ----HD---- C:\Program Files\WindowsApps
2016-01-06 15:24:45 ----SD---- C:\Users\Sasha\AppData\Roaming\Microsoft
2016-01-05 21:04:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-01-05 20:02:25 ----SHD---- C:\$RECYCLE.BIN
2016-01-05 19:45:13 ----D---- C:\Intel
2016-01-05 14:12:19 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-02 19:18:51 ----D---- C:\Program Files (x86)\Common Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fsbts;fsbts; C:\WINDOWS\system32\Drivers\fsbts.sys [2016-01-12 75448]
R0 hpdskflt;@oem49.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-06-07 670056]
R0 PinFile;PinFile; C:\WINDOWS\system32\DRIVERS\PinFile.sys [2014-12-05 49856]
R0 SDDisk2K;SDDisk2K; C:\WINDOWS\system32\DRIVERS\SDDisk2K.sys [2014-12-05 228544]
R0 SDDToki;SDDToki; C:\WINDOWS\system32\DRIVERS\SDDToki.sys [2014-12-05 131264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\HIPS\drivers\fshs.sys [2015-12-27 81984]
R1 fsvista;F-Secure Vista Support Driver; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [2015-10-08 13352]
R3 Accelerometer;@oem49.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-11-08 16751616]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-11-08 579584]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 dtlitescsibus;@oem55.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-15 30264]
R3 dtliteusbbus;@oem56.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-15 46392]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [2015-12-27 208424]
R3 fsni;fsni; \??\C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\fsni64.sys [2016-01-11 97832]
R3 ibtusb;@oem41.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2014-11-04 225008]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-10-28 4850616]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2014-05-27 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2014-05-27 22728]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2014-05-27 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-11-12 4275288]
R3 ISCT;@oem25.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD.sys [2014-05-27 44744]
R3 iwdbus;@oem38.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-10-17 30512]
R3 MEIx64;@oem22.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 NETwNb64;@oem33.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [2014-10-17 3486488]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem40.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem47.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2014-03-22 476888]
R3 SPUVCbv;@oem12.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [2014-10-07 674592]
R3 SynTP;@oem60.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\System32\drivers\SynTP.sys [2016-01-05 580264]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2015-11-23 31144]
S3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem57.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem37.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-10-17 42288]
S3 IntcDAud;@oem30.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-10-30 454416]
S3 RSUSBSTOR;@oem42.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2014-03-27 272600]
S3 RSUSBVSTOR;@oem43.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2014-03-27 331992]
S3 ssudmdm;@oem58.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-11-08 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2014-10-29 38792]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-01-12 1048488]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-01-08 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-01-08 1773696]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-07-28 500048]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; c:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-09-23 638368]
R2 fshoster;F-Secure Dll Hoster; C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe [2015-07-16 187432]
R2 FSORSPClient;F-Secure ORSP Client; C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe [2015-12-27 60456]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem49.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2013-07-23 43320]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-12-20 26168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-06-25 16232]
R2 ibtsiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2014-11-04 125168]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-10-28 329104]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-08-14 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-09-23 157088]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-09-04 292568]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2015-12-11 4377000]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2013-09-12 3221392]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 FSMA;F-Secure Management Agent; C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE [2015-10-08 216104]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20 269504]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-10-28 279952]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03 107848]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-09-23 268192]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]

-----------------EOF-----------------

sasa.eu · #10 Příspěvek od **sasa.eu** » 31 led 2016 23:09

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sasha at 2016-01-31 23:08:01
Microsoft Windows 8.1
System drive C: has 786 GB (84%) free of 937 GB
Total RAM: 8083 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:08:14, on 31. 1. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Sasha.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Browsing Protection by F-Secure - {45BBE08D-81C5-4A67-AF20-B2A077C67747} - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll
O2 - BHO: SafeSearchBHO - {690EF1CF-5775-4CB3-A5B8-85A63FD0262B} - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: F-Secure Search Toolbar - {B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [F-Secure Hoster (45329)] "C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -app -hosterid:1
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Sasha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - c:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: F-Secure Dll Hoster (fshoster) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem49.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (ibtsiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 14737 bytes

======Listing Processes======

wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\windows\system32\vcsFPService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\WINDOWS\system32\WLANExt.exe 851449008704
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"c:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -hosterid:0
"C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE" /service /stopevent=608 /ipcexch=1060
"C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\fssm32.exe" 3 900 916 924
oid 1.3.6.1.4.1.2213.11.1.27.64 HosterGroupType 0
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
dashost.exe {43d6d6df-f3cc-46ca-830f359cdfdcbd7d}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2360
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
szndesktop.exe default start
"C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cachedir="C:\Users\Sasha\AppData\Local\Steam\htmlcache" -steampid=10228 -buildid=1451690000 -steamid="0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -app -hosterid:1
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
/fmw.trayonly
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE" /splash
"C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\wbem\WmiApSrv.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding

"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe120_ Global\UsGthrCtrlFltPipeMssGthrPipe120 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 556 560 568 65536 564
"C:\Users\Sasha\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_286_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForSasha.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSasha (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45BBE08D-81C5-4A67-AF20-B2A077C67747}]
Browsing Protection by F-Secure - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https64.dll [2016-01-11 1288744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{690EF1CF-5775-4CB3-A5B8-85A63FD0262B}]
F-Secure Search - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch64.dll [2015-11-19 503848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08 2134656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45BBE08D-81C5-4A67-AF20-B2A077C67747}]
Browsing Protection by F-Secure - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll [2016-01-11 1058856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{690EF1CF-5775-4CB3-A5B8-85A63FD0262B}]
F-Secure Search - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll [2015-11-19 367656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08 1725056]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-12-20 414920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - F-Secure Search Toolbar - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch64.dll [2015-11-19 503848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - F-Secure Search Toolbar - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll [2015-11-19 367656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-06-25 36352]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-11-11 7659224]
"ISCT Tray"=c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-08-14 5860656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-12-14 3013712]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-17 50385536]
"cz.seznam.software.autoupdate"=C:\Users\Sasha\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-10-03 425608]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-07 767176]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2014-04-01 126240]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-01-12 179624]
"F-Secure Hoster (45329)"=C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe [2015-07-16 187432]
"F-Secure Manager"=C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE [2015-10-08 310312]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2015-04-28 2086240]
"DelaypluginInstall"=C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktopChanges"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-28 02:04:33 ----D---- C:\AdwCleaner
2016-01-25 02:45:43 ----D---- C:\WINDOWS\Minidump
2016-01-21 10:41:45 ----D---- C:\rsit
2016-01-21 10:41:45 ----D---- C:\Program Files\trend micro
2016-01-14 00:34:13 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-14 00:34:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-14 00:34:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-01-14 00:34:10 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-01-14 00:34:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-14 00:34:06 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-01-14 00:33:12 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-01-14 00:33:12 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-14 00:33:07 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-01-14 00:33:07 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-14 00:33:07 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-01-14 00:33:06 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-14 00:33:05 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-01-14 00:33:03 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\system32\devenum.dll
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-01-14 00:32:58 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-01-14 00:32:57 ----AC---- C:\WINDOWS\system32\SysFxUI.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-01-14 00:32:40 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\certcli.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-14 00:32:37 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-01-14 00:32:37 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-01-14 00:32:32 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-14 00:32:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-14 00:32:29 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-14 00:32:09 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-01-14 00:32:09 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-12 18:47:25 ----D---- C:\ProgramData\Steam
2016-01-12 18:03:40 ----D---- C:\Program Files (x86)\Total War ROME II
2016-01-07 17:42:26 ----D---- C:\Users\Sasha\AppData\Roaming\The Creative Assembly
2016-01-07 17:42:02 ----A---- C:\WINDOWS\SYSWOW64\steam_api.dll
2016-01-07 17:41:42 ----D---- C:\ProgramData\Logs
2016-01-07 17:00:19 ----D---- C:\Hry
2016-01-05 20:25:53 ----A---- C:\WINDOWS\system32\SynTPCo20.dll
2016-01-05 20:25:52 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2016-01-05 20:25:52 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2016-01-05 20:25:39 ----A---- C:\WINDOWS\SYSWOW64\SynCom.dll
2016-01-05 20:25:39 ----A---- C:\WINDOWS\system32\SynCOM.dll
2016-01-05 16:47:38 ----D---- C:\Program Files (x86)\PokerStars.EU
2016-01-03 21:41:03 ----D---- C:\Program Files (x86)\Google
2016-01-02 19:19:28 ----D---- C:\Program Files (x86)\Seznam.cz
2016-01-02 19:19:06 ----D---- C:\Users\Sasha\AppData\Roaming\Seznam.cz
2016-01-02 19:19:03 ----D---- C:\Users\Sasha\AppData\Roaming\Wondershare Video Converter Pro
2016-01-02 19:18:27 ----A---- C:\WINDOWS\SYSWOW64\WSCM64.dll
2016-01-02 19:18:02 ----D---- C:\ProgramData\Wondershare Video Converter Pro
2016-01-02 19:17:50 ----D---- C:\ProgramData\Wondershare
2016-01-02 19:17:50 ----D---- C:\Program Files (x86)\Wondershare

======List of files/folders modified in the last 1 month======

2016-01-31 23:07:03 ----D---- C:\WINDOWS\Temp
2016-01-31 23:04:43 ----D---- C:\Users\Sasha\AppData\Roaming\Skype
2016-01-31 23:00:00 ----D---- C:\WINDOWS\system32\sru
2016-01-31 20:57:31 ----SHD---- C:\WINDOWS\Installer
2016-01-31 20:52:54 ----RD---- C:\Program Files (x86)
2016-01-31 20:52:54 ----D---- C:\WINDOWS\Prefetch
2016-01-31 20:52:47 ----D---- C:\WINDOWS\Tasks
2016-01-31 18:20:02 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-31 18:09:15 ----D---- C:\Program Files (x86)\Steam
2016-01-31 15:21:58 ----D---- C:\Windows
2016-01-31 15:11:31 ----RD---- C:\WINDOWS\System32
2016-01-31 15:11:31 ----D---- C:\WINDOWS\Inf
2016-01-31 15:11:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-29 18:41:24 ----SHD---- C:\System Volume Information
2016-01-28 22:06:41 ----D---- C:\WINDOWS\system32\NDF
2016-01-22 00:25:04 ----D---- C:\Program Files (x86)\Opera
2016-01-22 00:25:03 ----D---- C:\WINDOWS\system32\Tasks
2016-01-21 10:41:45 ----RD---- C:\Program Files
2016-01-21 10:17:11 ----RSD---- C:\WINDOWS\assembly
2016-01-20 16:49:38 ----D---- C:\WINDOWS\SysWOW64
2016-01-20 11:26:43 ----D---- C:\ProgramData\Hewlett-Packard
2016-01-20 11:04:31 ----D---- C:\Program Files (x86)\Hewlett-Packard
2016-01-20 11:04:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-01-20 11:02:26 ----RSD---- C:\WINDOWS\Fonts
2016-01-20 11:02:03 ----AD---- C:\SWSETUP
2016-01-19 22:59:27 ----D---- C:\WINDOWS\system32\config
2016-01-17 11:54:14 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-16 18:34:40 ----D---- C:\WINDOWS\rescache
2016-01-16 18:31:49 ----D---- C:\WINDOWS\system32\MRT
2016-01-16 18:28:57 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-16 10:51:50 ----D---- C:\WINDOWS\WinSxS
2016-01-16 10:51:41 ----RD---- C:\Program Files (x86)\Skype
2016-01-15 19:45:15 ----D---- C:\Program Files\Internet Explorer
2016-01-15 19:45:12 ----D---- C:\WINDOWS\system32\drivers
2016-01-15 19:45:08 ----SD---- C:\WINDOWS\system32\CompatTel
2016-01-15 19:45:08 ----D---- C:\WINDOWS\system32\appraiser
2016-01-15 19:45:08 ----D---- C:\WINDOWS\apppatch
2016-01-15 17:26:25 ----D---- C:\WINDOWS\CbsTemp
2016-01-15 00:14:59 ----D---- C:\WINDOWS\AppReadiness
2016-01-12 18:47:25 ----HD---- C:\ProgramData
2016-01-12 12:11:45 ----D---- C:\WINDOWS\system32\catroot
2016-01-12 10:35:46 ----HD---- C:\Program Files\WindowsApps
2016-01-06 15:24:45 ----SD---- C:\Users\Sasha\AppData\Roaming\Microsoft
2016-01-05 21:04:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-01-05 20:02:25 ----SHD---- C:\$RECYCLE.BIN
2016-01-05 19:45:13 ----D---- C:\Intel
2016-01-05 14:12:19 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-02 19:18:51 ----D---- C:\Program Files (x86)\Common Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fsbts;fsbts; C:\WINDOWS\system32\Drivers\fsbts.sys [2016-01-12 75448]
R0 hpdskflt;@oem49.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-06-07 670056]
R0 PinFile;PinFile; C:\WINDOWS\system32\DRIVERS\PinFile.sys [2014-12-05 49856]
R0 SDDisk2K;SDDisk2K; C:\WINDOWS\system32\DRIVERS\SDDisk2K.sys [2014-12-05 228544]
R0 SDDToki;SDDToki; C:\WINDOWS\system32\DRIVERS\SDDToki.sys [2014-12-05 131264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\HIPS\drivers\fshs.sys [2015-12-27 81984]
R1 fsvista;F-Secure Vista Support Driver; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [2015-10-08 13352]
R3 Accelerometer;@oem49.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-11-08 16751616]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-11-08 579584]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 dtlitescsibus;@oem55.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-15 30264]
R3 dtliteusbbus;@oem56.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-15 46392]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [2015-12-27 208424]
R3 fsni;fsni; \??\C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\fsni64.sys [2016-01-11 97832]
R3 ibtusb;@oem41.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2014-11-04 225008]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-10-28 4850616]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2014-05-27 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2014-05-27 22728]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2014-05-27 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-11-12 4275288]
R3 ISCT;@oem25.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD.sys [2014-05-27 44744]
R3 iwdbus;@oem38.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-10-17 30512]
R3 MEIx64;@oem22.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 NETwNb64;@oem33.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [2014-10-17 3486488]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem40.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem47.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2014-03-22 476888]
R3 SPUVCbv;@oem12.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [2014-10-07 674592]
R3 SynTP;@oem60.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\System32\drivers\SynTP.sys [2016-01-05 580264]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2015-11-23 31144]
S3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem57.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem37.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-10-17 42288]
S3 IntcDAud;@oem30.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-10-30 454416]
S3 RSUSBSTOR;@oem42.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2014-03-27 272600]
S3 RSUSBVSTOR;@oem43.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2014-03-27 331992]
S3 ssudmdm;@oem58.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-11-08 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2014-10-29 38792]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-01-12 1048488]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-01-08 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-01-08 1773696]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-07-28 500048]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; c:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-09-23 638368]
R2 fshoster;F-Secure Dll Hoster; C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe [2015-07-16 187432]
R2 FSORSPClient;F-Secure ORSP Client; C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe [2015-12-27 60456]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem49.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2013-07-23 43320]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-12-20 26168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-06-25 16232]
R2 ibtsiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2014-11-04 125168]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-10-28 329104]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-08-14 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-09-23 157088]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-09-04 292568]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2015-12-11 4377000]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2013-09-12 3221392]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 FSMA;F-Secure Management Agent; C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE [2015-10-08 216104]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20 269504]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-10-28 279952]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03 107848]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-09-23 268192]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]

-----------------EOF-----------------

#11 Příspěvek od **Rudy** » 01 úno 2016 17:29

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files (x86)\Skype\Toolbars
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64

:services
c2cautoupdatesvc
c2cpnrsvc

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

sasa.eu · #12 Příspěvek od **sasa.eu** » 01 úno 2016 23:55

bohuzel kdyz kliknu na ten odkaz tak se nic nedeje

#13 Příspěvek od **Rudy** » 02 úno 2016 17:47

Zkuste tento:

OTM.rar: (505.73 KiB) Staženo 114 x

sasa.eu · #14 Příspěvek od **sasa.eu** » 03 úno 2016 10:49

Logfile of random's system information tool 1.10 (written by random/random)
Run by Sasha at 2016-02-03 10:49:01
Microsoft Windows 8.1
System drive C: has 810 GB (86%) free of 937 GB
Total RAM: 8083 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:49:04, on 3. 2. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe
C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Sasha.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Browsing Protection by F-Secure - {45BBE08D-81C5-4A67-AF20-B2A077C67747} - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll
O2 - BHO: SafeSearchBHO - {690EF1CF-5775-4CB3-A5B8-85A63FD0262B} - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: F-Secure Search Toolbar - {B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [F-Secure Hoster (45329)] "C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -app -hosterid:1
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Sasha\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - c:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: F-Secure Dll Hoster (fshoster) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem49.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (ibtsiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 14987 bytes

======Listing Processes======

wininit.exe

C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k GPSvcGroup
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\vcsFPService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\WINDOWS\system32\WLANExt.exe 452870209472
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"c:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -hosterid:0
"C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE" /service /stopevent=708 /ipcexch=756
"C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
"c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE"
oid 1.3.6.1.4.1.2213.11.1.27.64 HosterGroupType 0
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\fssm32.exe" 3 924 932 936
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
dashost.exe {e0a96380-6770-4c9d-8e87e2e9363bfdf5}
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
taskeng.exe {F839688D-C4BA-4A1B-A330-0BCDB99D6A66}
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2116
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
szndesktop.exe default start
"C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe" -app -hosterid:1
"C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE" /splash
/fmw.trayonly
"C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Steam\Steam.exe" "-silent"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4000.0.1560615408\567669394" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,24,52 --gpu-vendor-id=0x1002 --gpu-device-id=0x6901 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.301.1002.1004 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cachedir="C:\Users\Sasha\AppData\Local\Steam\htmlcache" -steampid=3768 -buildid=1454445843 -steamid="0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4000.1.499377081\119209035" --font-cache-shared-handle=2056 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4000.2.757707143\673930937" --font-cache-shared-handle=2248 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4000.3.1559262773\137946977" --font-cache-shared-handle=2416 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4000.4.196514733\1606245422" --font-cache-shared-handle=5284 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4000.5.305943291\1193833820" --font-cache-shared-handle=4872 /prefetch:673131151
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe" -source HPSA
C:\WINDOWS\system32\GWX\GWX.exe /updateconfig

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7f659495-1193-44d1-ad8b-1a3ef526a32b -SystemEventPortName:HostProcess-19eea922-9631-48c0-bc1a-d77c79dc17cd -IoCancelEventPortName:HostProcess-0a064f9b-06da-4b6f-ad48-7eaf6d1bf475 -NonStateChangingEventPortName:HostProcess-264f034f-d6b0-462f-9cc1-b3b8695dcd69 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:49857d54-9303-4f07-be25-568ee1c69bab -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\msiexec.exe /V
"C:\Users\Sasha\Downloads\RSITx64 (1).exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_286_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\HPCeeScheduleForSasha.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSasha (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45BBE08D-81C5-4A67-AF20-B2A077C67747}]
Browsing Protection by F-Secure - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https64.dll [2016-01-11 1288744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{690EF1CF-5775-4CB3-A5B8-85A63FD0262B}]
F-Secure Search - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch64.dll [2015-11-19 503848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45BBE08D-81C5-4A67-AF20-B2A077C67747}]
Browsing Protection by F-Secure - C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll [2016-01-11 1058856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{690EF1CF-5775-4CB3-A5B8-85A63FD0262B}]
F-Secure Search - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll [2015-11-19 367656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-12-20 414920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - F-Secure Search Toolbar - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch64.dll [2015-11-19 503848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{B242FC32-2B60-48EA-A8E3-2E280EDBC48F} - F-Secure Search Toolbar - C:\Program Files (x86)\UPC Smart Guard\apps\SafeSearch\IE\FSSafeSearch.dll [2015-11-19 367656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-06-25 36352]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-11-11 7659224]
"ISCT Tray"=c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-08-14 5860656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-02-02 3014224]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-17 50385536]
"cz.seznam.software.autoupdate"=C:\Users\Sasha\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Sasha\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-10-03 425608]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-07 767176]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2014-04-01 126240]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-01-12 179624]
"F-Secure Hoster (45329)"=C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe [2015-07-16 187432]
"F-Secure Manager"=C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSM32.EXE [2015-10-08 310312]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2015-04-28 2086240]
"DelaypluginInstall"=C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktopChanges"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-03 10:35:58 ----D---- C:\_OTM
2016-01-28 02:04:33 ----D---- C:\AdwCleaner
2016-01-25 02:45:43 ----D---- C:\WINDOWS\Minidump
2016-01-21 10:41:45 ----D---- C:\rsit
2016-01-21 10:41:45 ----D---- C:\Program Files\trend micro
2016-01-14 00:34:13 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-14 00:34:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-14 00:34:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-01-14 00:34:10 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-01-14 00:34:08 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-14 00:34:07 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-01-14 00:34:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-14 00:34:06 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-14 00:34:05 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-14 00:34:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-01-14 00:33:12 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-01-14 00:33:12 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-14 00:33:07 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-01-14 00:33:07 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-14 00:33:07 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-01-14 00:33:06 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-14 00:33:06 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-01-14 00:33:05 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-14 00:33:05 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-14 00:33:04 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-01-14 00:33:03 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-14 00:33:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-14 00:33:02 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-01-14 00:33:01 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-14 00:33:00 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-14 00:32:59 ----A---- C:\WINDOWS\system32\devenum.dll
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-01-14 00:32:58 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-14 00:32:58 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-01-14 00:32:57 ----AC---- C:\WINDOWS\system32\SysFxUI.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-14 00:32:57 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-01-14 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-01-14 00:32:40 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-14 00:32:40 ----A---- C:\WINDOWS\system32\certcli.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-14 00:32:39 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-14 00:32:37 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-01-14 00:32:37 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-01-14 00:32:32 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-14 00:32:31 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-14 00:32:29 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-14 00:32:25 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-01-14 00:32:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-14 00:32:09 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-01-14 00:32:09 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-12 18:47:25 ----D---- C:\ProgramData\Steam
2016-01-12 18:03:40 ----D---- C:\Program Files (x86)\Total War ROME II
2016-01-07 17:42:26 ----D---- C:\Users\Sasha\AppData\Roaming\The Creative Assembly
2016-01-07 17:42:02 ----A---- C:\WINDOWS\SYSWOW64\steam_api.dll
2016-01-07 17:41:42 ----D---- C:\ProgramData\Logs
2016-01-07 17:00:19 ----D---- C:\Hry
2016-01-05 20:25:53 ----A---- C:\WINDOWS\system32\SynTPCo20.dll
2016-01-05 20:25:52 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2016-01-05 20:25:52 ----A---- C:\WINDOWS\system32\drivers\SynTP.sys
2016-01-05 20:25:39 ----A---- C:\WINDOWS\SYSWOW64\SynCom.dll
2016-01-05 20:25:39 ----A---- C:\WINDOWS\system32\SynCOM.dll
2016-01-05 16:47:38 ----D---- C:\Program Files (x86)\PokerStars.EU

======List of files/folders modified in the last 1 month======

2016-02-03 10:48:42 ----D---- C:\WINDOWS\Prefetch
2016-02-03 10:47:43 ----D---- C:\WINDOWS\Temp
2016-02-03 10:47:16 ----D---- C:\Users\Sasha\AppData\Roaming\Seznam.cz
2016-02-03 10:47:14 ----D---- C:\Program Files (x86)\Steam
2016-02-03 10:44:28 ----D---- C:\Users\Sasha\AppData\Roaming\Skype
2016-02-03 10:42:07 ----D---- C:\Windows
2016-02-03 10:36:49 ----D---- C:\WINDOWS\Tasks
2016-02-03 10:36:48 ----RD---- C:\Program Files (x86)\Skype
2016-02-03 10:17:36 ----D---- C:\WINDOWS\Microsoft.NET
2016-02-03 10:00:00 ----D---- C:\WINDOWS\system32\sru
2016-02-03 09:53:59 ----D---- C:\WINDOWS\system32\config
2016-02-01 20:44:45 ----SHD---- C:\System Volume Information
2016-01-31 20:57:31 ----SHD---- C:\WINDOWS\Installer
2016-01-31 20:52:54 ----RD---- C:\Program Files (x86)
2016-01-31 15:11:31 ----RD---- C:\WINDOWS\System32
2016-01-31 15:11:31 ----D---- C:\WINDOWS\Inf
2016-01-31 15:11:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-28 22:06:41 ----D---- C:\WINDOWS\system32\NDF
2016-01-22 00:25:04 ----D---- C:\Program Files (x86)\Opera
2016-01-22 00:25:03 ----D---- C:\WINDOWS\system32\Tasks
2016-01-21 10:41:45 ----RD---- C:\Program Files
2016-01-21 10:17:11 ----RSD---- C:\WINDOWS\assembly
2016-01-20 16:49:38 ----D---- C:\WINDOWS\SysWOW64
2016-01-20 11:26:43 ----D---- C:\ProgramData\Hewlett-Packard
2016-01-20 11:04:31 ----D---- C:\Program Files (x86)\Hewlett-Packard
2016-01-20 11:04:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-01-20 11:02:26 ----RSD---- C:\WINDOWS\Fonts
2016-01-20 11:02:03 ----AD---- C:\SWSETUP
2016-01-17 11:54:14 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-16 18:34:40 ----D---- C:\WINDOWS\rescache
2016-01-16 18:31:49 ----D---- C:\WINDOWS\system32\MRT
2016-01-16 18:28:57 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-16 10:51:50 ----D---- C:\WINDOWS\WinSxS
2016-01-15 19:45:15 ----D---- C:\Program Files\Internet Explorer
2016-01-15 19:45:12 ----D---- C:\WINDOWS\system32\drivers
2016-01-15 19:45:08 ----SD---- C:\WINDOWS\system32\CompatTel
2016-01-15 19:45:08 ----D---- C:\WINDOWS\system32\appraiser
2016-01-15 19:45:08 ----D---- C:\WINDOWS\apppatch
2016-01-15 17:26:25 ----D---- C:\WINDOWS\CbsTemp
2016-01-15 00:14:59 ----D---- C:\WINDOWS\AppReadiness
2016-01-12 18:47:25 ----HD---- C:\ProgramData
2016-01-12 12:11:45 ----D---- C:\WINDOWS\system32\catroot
2016-01-12 10:35:46 ----HD---- C:\Program Files\WindowsApps
2016-01-07 17:43:55 ----D---- C:\Program Files (x86)\Wondershare
2016-01-07 17:43:51 ----D---- C:\ProgramData\Wondershare
2016-01-06 15:24:45 ----SD---- C:\Users\Sasha\AppData\Roaming\Microsoft
2016-01-05 21:04:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-01-05 20:02:25 ----SHD---- C:\$RECYCLE.BIN
2016-01-05 19:45:13 ----D---- C:\Intel
2016-01-05 14:12:19 ----D---- C:\WINDOWS\LiveKernelReports

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fsbts;fsbts; C:\WINDOWS\system32\Drivers\fsbts.sys [2016-01-12 75448]
R0 hpdskflt;@oem49.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-06-07 670056]
R0 PinFile;PinFile; C:\WINDOWS\system32\DRIVERS\PinFile.sys [2014-12-05 49856]
R0 SDDisk2K;SDDisk2K; C:\WINDOWS\system32\DRIVERS\SDDisk2K.sys [2014-12-05 228544]
R0 SDDToki;SDDToki; C:\WINDOWS\system32\DRIVERS\SDDToki.sys [2014-12-05 131264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\HIPS\drivers\fshs.sys [2015-12-27 81984]
R1 fsvista;F-Secure Vista Support Driver; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [2015-10-08 13352]
R3 Accelerometer;@oem49.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-11-08 16751616]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-11-08 579584]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 dtlitescsibus;@oem55.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-15 30264]
R3 dtliteusbbus;@oem56.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-15 46392]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [2015-12-27 208424]
R3 fsni;fsni; \??\C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Scanning\bin\fsni64.sys [2016-01-11 97832]
R3 ibtusb;@oem41.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2014-11-04 225008]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-10-28 4850616]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2014-05-27 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2014-05-27 22728]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2014-05-27 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-11-12 4275288]
R3 ISCT;@oem25.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD.sys [2014-05-27 44744]
R3 iwdbus;@oem38.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-10-17 30512]
R3 MEIx64;@oem22.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 NETwNb64;@oem33.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [2014-10-17 3486488]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem40.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem47.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2014-03-22 476888]
R3 SPUVCbv;@oem12.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [2014-10-07 674592]
R3 SynTP;@oem60.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\System32\drivers\SynTP.sys [2016-01-05 580264]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2015-11-23 31144]
S3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem57.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem37.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-10-17 42288]
S3 IntcDAud;@oem30.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-10-30 454416]
S3 RSUSBSTOR;@oem42.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2014-03-27 272600]
S3 RSUSBVSTOR;@oem43.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2014-03-27 331992]
S3 ssudmdm;@oem58.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-11-08 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2014-10-29 38792]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-01-12 1048488]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-07-28 500048]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; c:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-09-23 638368]
R2 fshoster;F-Secure Dll Hoster; C:\Program Files (x86)\UPC Smart Guard\fshoster32.exe [2015-07-16 187432]
R2 FSORSPClient;F-Secure ORSP Client; C:\Program Files (x86)\UPC Smart Guard\apps\CCF_Reputation\fsorsp.exe [2015-12-27 60456]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem49.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2013-07-23 43320]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-12-20 26168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-06-25 16232]
R2 ibtsiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2014-11-04 125168]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-10-28 329104]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-08-14 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-09-23 157088]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-09-04 292568]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2015-12-11 4377000]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2013-09-12 3221392]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 FSMA;F-Secure Management Agent; C:\Program Files (x86)\UPC Smart Guard\apps\ComputerSecurity\Common\FSMA32.EXE [2015-10-08 216104]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-02-02 835152]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20 269504]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-10-28 279952]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03 107848]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-09-23 268192]

-----------------EOF-----------------

#15 Příspěvek od **Rudy** » 03 úno 2016 17:04

Dvouklikem na soubor C:\Program Files\trend micro\Sasha.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

VIRY.CZ

Prosim o pomoct nejak se mi zasekava pocitac posledni dobou

Prosim o pomoct nejak se mi zasekava pocitac posledni dobou

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do

Re: Prosim o pomoct nejak se mi zasekava pocitac posledni do