Prosím o kontrolu logu,
předem děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:26-07-2015
Ran by Kryštof (administrator) on DV9 (26-07-2015 22:03:39)
Running from C:\Users\Kryštof\Desktop
Loaded Profiles: Kryštof (Available Profiles: Kryštof)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
() C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\DBRUpd.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
() C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7506136 2013-12-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2013-11-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2013-11-13] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3760456 2013-08-23] (Dell Inc.)
HKLM\...\Run: [ISCT Tray] => c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-04-24] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-03] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.)
HKLM-x32\...\Run: [SafeQClient] => C:\Program Files (x86)\SafeQ\SafeQ_cli.exe [493056 2014-08-22] (VŠB-TU Ostrava)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-531041961-3592705473-2365900723-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-531041961-3592705473-2365900723-1002\...\Run: [AdobeBridge] => [X]
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [176904 2015-06-17] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [155280 2015-06-17] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-531041961-3592705473-2365900723-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKU\S-1-5-21-531041961-3592705473-2365900723-1002\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... M%3DIESR02
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-531041961-3592705473-2365900723-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-07] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-07] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.6.1
Tcpip\..\Interfaces\{234F4A3A-9139-44F0-AB35-4C8693EAEC20}: [DhcpNameServer] 192.168.6.1
Tcpip\..\Interfaces\{5612DBFE-200A-4674-917F-4500AC948E21}: [DhcpNameServer] 192.168.6.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-29] (Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Windows\SysWOW64\npdeployJava1.dll [2014-12-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-29] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No File
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-04]
CHR Extension: (Google Drive) - C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-04]
CHR Extension: (YouTube) - C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-04]
CHR Extension: (Google Search) - C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-04]
CHR Extension: (Gmail) - C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-04]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2573520 2015-05-22] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201936 2015-05-22] (Dell Inc.)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6516792 2015-05-22] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-03] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [120016 2014-04-04] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315376 2014-04-26] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-04] (Intel Corporation)
R2 ISCTAgent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-04-24] ()
S3 iumsvc; c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 mi-raysat_3dsmax2013_64; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [86016 2011-09-15] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-17] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-06-03] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-03] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2004488 2015-07-05] (Electronic Arts)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [289496 2013-12-07] (Realtek Semiconductor)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [1924328 2014-09-18] (SoftThinks SAS)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [20648 2015-06-11] (Dell Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-01-17] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-28] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2014-02-03] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1419064 2014-02-21] (Motorola Solutions, Inc.)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-31] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-01-01] (Disc Soft Ltd)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-01-24] ()
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [186064 2014-04-04] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [22216 2014-02-03] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [22728 2014-02-03] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-04-03] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD.sys [44744 2014-02-03] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-07-05] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3434464 2014-03-13] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-06-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-04-03] (NVIDIA Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [444632 2013-10-19] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [26624 2014-03-22] (Synaptics Incorporated)
R3 ST_ACCEL; C:\Windows\system32\DRIVERS\ST_Accel.sys [83456 2013-08-06] (STMicroelectronics)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 PCDSRVC{3B54B31B-D06B6431-06020200}_0; \??\c:\program files\dell\supportassist\pcdsrvc_x64.pkms [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-26 22:03 - 2015-07-26 22:03 - 00023404 _____ C:\Users\Kryštof\Desktop\FRST.txt
2015-07-26 22:03 - 2015-07-26 22:01 - 02146816 _____ (Farbar) C:\Users\Kryštof\Desktop\FRST64.exe
2015-07-26 22:01 - 2015-07-26 22:01 - 02146816 _____ (Farbar) C:\Users\Kryštof\Downloads\FRST64.exe
2015-07-21 18:16 - 2015-07-14 16:14 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-21 18:16 - 2015-07-14 16:14 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-07-21 18:16 - 2015-07-14 16:14 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-07-21 18:16 - 2015-07-14 16:13 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-20 16:49 - 2015-07-20 17:23 - 00070948 _____ C:\Users\Kryštof\Downloads\td 205.srt
2015-07-18 16:33 - 2015-07-18 16:33 - 00000942 _____ C:\Users\Kryštof\Documents\cc_20150718_163327.reg
2015-07-15 23:43 - 2015-07-09 21:51 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-15 23:43 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-15 23:43 - 2015-07-09 18:03 - 03701760 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-15 23:43 - 2015-07-09 17:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-15 23:43 - 2015-07-09 17:53 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-15 23:43 - 2015-07-09 17:50 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-07-15 23:43 - 2015-07-09 17:50 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-15 23:43 - 2015-07-09 17:48 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-15 23:43 - 2015-07-09 17:46 - 02229248 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-15 23:43 - 2015-07-09 17:38 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-15 23:43 - 2015-07-09 17:37 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-15 23:43 - 2015-07-09 17:35 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-15 23:43 - 2015-07-09 17:34 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-15 23:43 - 2015-06-30 00:43 - 00026288 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-15 23:43 - 2015-06-29 17:07 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-15 23:43 - 2015-06-29 17:07 - 01084928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-15 23:43 - 2015-06-29 17:07 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-15 23:43 - 2015-06-29 17:07 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-15 23:43 - 2015-06-29 17:07 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-15 23:43 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-15 23:43 - 2015-06-28 07:07 - 00178008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-15 23:43 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-15 23:43 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-07-15 23:43 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-07-15 23:43 - 2015-06-27 05:13 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-15 23:43 - 2015-06-27 05:12 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-15 23:43 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-15 23:43 - 2015-06-27 05:08 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-15 23:43 - 2015-06-27 05:08 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-15 23:43 - 2015-06-27 04:40 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-07-15 23:43 - 2015-06-27 04:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-15 23:43 - 2015-06-27 04:05 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-15 23:43 - 2015-06-27 04:00 - 00989184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-15 23:43 - 2015-06-27 03:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-07-15 23:43 - 2015-06-27 03:26 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-07-15 23:43 - 2015-06-27 01:21 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-15 23:43 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-15 23:43 - 2015-06-25 04:31 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-15 23:43 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-15 23:43 - 2015-06-16 00:39 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-15 23:43 - 2015-06-16 00:38 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-15 23:43 - 2015-06-16 00:26 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-15 23:43 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-15 23:43 - 2015-06-15 23:36 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-15 23:43 - 2015-06-15 23:17 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-07-15 23:43 - 2015-06-15 23:16 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-15 23:43 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-07-15 23:43 - 2015-06-15 23:15 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-07-15 23:43 - 2015-06-15 23:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-15 23:43 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-07-15 23:43 - 2015-06-15 22:52 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-15 23:43 - 2015-06-15 22:50 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-15 23:43 - 2015-06-15 22:17 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-07-15 23:43 - 2015-06-15 22:07 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-07-15 23:43 - 2015-06-15 22:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-07-15 23:43 - 2015-06-15 21:57 - 02460160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-07-15 23:43 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-07-15 23:43 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-15 23:43 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-07-15 23:43 - 2015-05-11 20:17 - 01201664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-07-15 23:43 - 2015-05-07 19:50 - 22292672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-07-15 23:43 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-07-15 23:43 - 2015-05-07 18:53 - 19734960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-07-15 23:43 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-07-15 23:43 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-07-15 23:43 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2015-07-15 23:43 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-07-15 23:43 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-07-15 23:43 - 2015-05-03 02:39 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-07-15 23:43 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2015-07-15 23:43 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-07-15 23:43 - 2014-11-04 21:25 - 00059712 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys
2015-07-15 23:43 - 2014-11-04 21:25 - 00051008 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2015-07-15 23:43 - 2014-11-04 08:55 - 00026112 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2015-07-15 23:43 - 2014-11-04 08:54 - 00108544 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2015-07-15 23:43 - 2014-11-04 08:54 - 00032256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-07-15 23:43 - 2014-11-04 08:54 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-07-15 23:42 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-07-15 23:42 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-15 23:42 - 2015-07-02 00:08 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-15 23:42 - 2015-07-01 23:14 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-07-15 23:42 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-15 23:42 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-07-15 23:42 - 2015-06-16 00:24 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-15 23:42 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-07-15 23:42 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-07-15 23:42 - 2015-06-15 23:57 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-15 23:42 - 2015-06-15 23:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-07-15 23:42 - 2015-06-15 23:55 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-15 23:42 - 2015-06-15 23:49 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-07-15 23:42 - 2015-06-15 23:41 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-07-15 23:42 - 2015-06-15 23:38 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-15 23:42 - 2015-06-15 23:04 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-07-15 23:42 - 2015-06-15 23:03 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-07-15 23:42 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-07-15 23:42 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-07-15 23:42 - 2015-06-15 22:43 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-07-15 23:42 - 2015-06-15 22:42 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-07-15 23:42 - 2015-06-15 22:41 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-07-15 23:42 - 2015-06-15 22:37 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-07-15 23:42 - 2015-06-15 22:32 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-07-15 23:42 - 2015-06-15 22:31 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-07-15 23:42 - 2015-06-15 22:30 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-07-15 23:42 - 2015-06-15 22:30 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-07-15 23:42 - 2015-06-11 05:49 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-15 23:42 - 2015-06-10 18:13 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-07-15 23:42 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-15 23:42 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-07-15 23:42 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-07-15 23:42 - 2015-05-02 01:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml
2015-07-15 23:42 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\SysWOW64\locale.nls
2015-07-15 23:42 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\system32\locale.nls
2015-07-15 23:42 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-07-15 23:42 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-07-15 23:41 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-07-15 23:41 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-15 23:41 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-07-15 23:41 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-07-15 23:41 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-15 23:41 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-15 23:40 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-15 23:40 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-07-13 14:14 - 2015-07-13 14:23 - 00062283 _____ C:\Users\Kryštof\Downloads\td 204.srt
2015-07-12 15:29 - 2015-07-12 15:29 - 00000000 ____D C:\Users\Kryštof\Downloads\Lawrence-Krauss,-Universe-from-Nothing-(2012)
2015-07-12 14:10 - 2015-07-12 14:26 - 300131259 _____ C:\Users\Kryštof\Downloads\Lawrence-Krauss,-Universe-from-Nothing-(2012).zip
2015-07-10 13:51 - 2015-07-10 13:51 - 00000366 _____ C:\Users\Kryštof\Documents\cc_20150710_135141.reg
2015-07-06 18:20 - 2015-07-06 19:56 - 1430250692 _____ C:\Users\Kryštof\Downloads\Adobe Photoshop_CS6_Cz_32,64 bit.rar
2015-07-06 18:16 - 2015-07-06 18:25 - 67680859 _____ C:\Users\Kryštof\Downloads\The Art of Natural Building Design, Construction, Resources.epub
2015-07-06 08:03 - 2015-07-06 08:03 - 00067028 _____ C:\Users\Kryštof\Downloads\td 203.srt
2015-07-06 07:38 - 2015-07-06 07:38 - 00017314 _____ C:\Users\Kryštof\Documents\cc_20150706_073824.reg
2015-07-06 07:33 - 2015-07-06 07:51 - 336767297 _____ C:\Users\Kryštof\Downloads\td 203.mp4
2015-07-05 23:32 - 2015-07-05 23:40 - 58550446 _____ C:\Users\Kryštof\Downloads\The Photoshop Workbook.rar
2015-07-05 21:24 - 2015-07-05 21:24 - 00000000 ____D C:\Users\Kryštof\Downloads\Dragon-Age-Inquisition---CRACK-+-UPDATE
2015-07-05 21:17 - 2015-07-26 11:32 - 00000024 _____ C:\Users\Kryštof\AppData\Roaming\appdataFr25.bin
2015-07-05 17:01 - 2015-07-05 17:17 - 292840661 _____ C:\Users\Kryštof\Downloads\Dragon-Age-Inquisition---CRACK-+-UPDATE.zip
2015-07-05 16:49 - 2015-07-08 09:18 - 00000000 ____D C:\Users\Kryštof\Desktop\zaloha plochy 5 7
2015-07-05 16:47 - 2015-07-05 16:47 - 00001312 _____ C:\Users\Kryštof\Documents\cc_20150705_164705.reg
2015-07-05 16:46 - 2015-07-05 16:46 - 00018908 _____ C:\Users\Kryštof\Documents\cc_20150705_164652.reg
2015-07-05 16:31 - 2015-07-05 16:31 - 00001963 _____ C:\Users\Kryçtof\Desktop\YTDownloader.lnk
2015-07-05 16:31 - 2015-07-05 16:31 - 00000000 ____D C:\Users\Kryštof\AppData\Local\CrashRpt
2015-07-05 16:31 - 2015-07-05 16:31 - 00000000 ____D C:\Users\Kryçtof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
2015-07-05 16:31 - 2015-07-05 16:31 - 00000000 ____D C:\Users\Kryçtof
2015-07-05 16:30 - 2015-07-05 16:30 - 00000000 ____D C:\Users\Kryštof\AppData\Roaming\Opera Software
2015-07-05 16:30 - 2015-07-05 16:30 - 00000000 ____D C:\Users\Kryštof\AppData\Local\Opera Software
2015-07-05 16:29 - 2015-07-05 16:29 - 00001016 _____ C:\Windows\Tasks\3UIITYvFvTnPlY.job
2015-07-05 16:28 - 2015-07-05 17:22 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-07-05 16:28 - 2015-07-05 16:31 - 00000000 ____D C:\Program Files (x86)\Opera
2015-07-05 16:28 - 2015-07-05 16:28 - 00000000 ____D C:\Users\Kryštof\AppData\Local\globalUpdate
2015-07-05 16:25 - 2015-07-05 16:25 - 00000000 ____D C:\Users\Kryštof\Documents\DRAGON AGE INQUISITION Key Generator_10924_i27830398_il345.exe
2015-07-05 16:25 - 2015-07-05 14:20 - 01548014 _____ C:\Users\Kryštof\Documents\DRAGON AGE INQUISITION Key Generator_10924_i27830398_il345.exe.zip
2015-07-05 16:24 - 2015-07-05 16:24 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-07-05 16:23 - 2015-07-05 21:25 - 00000000 ____D C:\Users\Kryštof\AppData\Roaming\Origin
2015-07-05 16:23 - 2015-07-05 16:24 - 00000000 ____D C:\Users\Kryštof\AppData\Local\Origin
2015-07-05 16:21 - 2015-07-05 16:23 - 00000000 ____D C:\Program Files (x86)\Origin
2015-07-05 16:21 - 2015-07-05 16:21 - 00000000 ____D C:\ProgramData\Electronic Arts
2015-07-05 16:16 - 2015-07-05 23:42 - 00000000 ____D C:\ProgramData\Origin
2015-07-05 15:07 - 2015-07-05 15:07 - 00000000 ____D C:\Users\Kryštof\Downloads\CoreTemp32
2015-07-05 15:04 - 2015-07-05 15:04 - 00000000 ___HD C:\Windows\msdownld.tmp
2015-07-05 15:03 - 2015-07-05 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts Inc
2015-07-05 12:35 - 2015-07-05 14:05 - 1566375936 _____ C:\Users\Kryštof\Downloads\Kmotr.1.CZ.DVDrip.[RbB].avi
2015-07-05 12:27 - 2015-07-05 16:15 - 00000000 ____D C:\Dragon Age Inquisition
2015-07-05 09:44 - 2015-07-05 11:43 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part09.rar
2015-07-04 18:47 - 2015-07-04 20:51 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part08.rar
2015-07-04 13:20 - 2015-07-04 13:54 - 612303218 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part08.rar.crdownload
2015-07-03 18:22 - 2015-07-03 20:22 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part07.rar
2015-07-03 13:58 - 2015-07-03 15:58 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part06.rar
2015-07-03 11:54 - 2015-07-03 13:53 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part05.rar
2015-07-03 07:42 - 2015-07-03 07:42 - 00007764 _____ C:\Users\Kryštof\Documents\cc_20150703_074224.reg
2015-07-02 18:39 - 2015-07-02 20:39 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part04.rar
2015-07-02 16:40 - 2015-07-02 18:39 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part03.rar
2015-07-02 16:36 - 2015-07-02 16:36 - 00000000 ____D C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack
2015-07-02 14:31 - 2015-07-02 16:31 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part02.rar
2015-07-02 13:14 - 2015-07-02 14:11 - 777116754 _____ C:\Users\Kryštof\Downloads\Pheb.rar
2015-07-02 13:05 - 2015-07-02 13:13 - 106681300 _____ C:\Users\Kryštof\Downloads\2.rar
2015-07-02 12:24 - 2015-07-02 14:25 - 2147483648 _____ C:\Users\Kryštof\Downloads\Dragon_Age_Inquisition&crack.part01.rar
2015-06-29 18:40 - 2015-06-29 18:40 - 00072743 _____ C:\Users\Kryštof\Downloads\td 202.srt
2015-06-29 18:29 - 2015-06-29 18:29 - 02496772 _____ C:\Users\Kryštof\Downloads\The Athlete's Cookbook A Nutritional Program to Fuel the Body for Peak Performance and Rapid Recover.epub
2015-06-29 18:14 - 2015-06-29 18:14 - 00000079 _____ C:\Users\Krytof\Desktop\29 June.rar
2015-06-29 18:13 - 2015-07-05 17:24 - 00000000 ____D C:\Program Files (x86)\SystemDefend
2015-06-29 18:12 - 2015-07-05 17:22 - 00000000 ____D C:\Program Files (x86)\CuTTuhEPriCCe
2015-06-29 18:11 - 2015-07-02 18:11 - 00000000 ____D C:\ProgramData\{0c4378d7-ce51-3487-0c43-378d7ce5e35f}
2015-06-29 14:58 - 2015-06-29 15:00 - 11367720 _____ C:\Users\Kryštof\Downloads\Rawlicious Superfoods With 100+ Recipes for a Healthy Lifestyle - Peter Daniel.epub
2015-06-29 14:09 - 2015-06-29 14:09 - 00724386 _____ C:\Users\Kryštof\Downloads\How to Sprout Raw Food Grow an Indoor Organic Garden with Wheatgrass, Bean Sprouts, Grain Sprouts, M.epub
2015-06-29 13:08 - 2015-04-30 09:17 - 02790807 _____ C:\Users\Kryštof\Downloads\Nest Smart Home Automation System Handbook - Gerard O'Driscoll.epub
2015-06-29 13:08 - 2015-04-30 06:34 - 03292028 _____ C:\Users\Kryštof\Downloads\Nest Smart Home Automation System Handbook - Gerard O'Driscoll.mobi
2015-06-29 12:24 - 2015-06-29 12:26 - 16981541 _____ C:\Users\Kryštof\Downloads\Building with Straw Bales- A practical manual for self-builders and architects .epub
2015-06-28 22:59 - 2015-06-28 22:59 - 00000000 ____D C:\Users\Kryštof\Downloads\Arthur-Conan-Doyle---knihy-pdf
2015-06-28 22:58 - 2015-06-28 22:59 - 17549733 _____ C:\Users\Kryštof\Downloads\Arthur-Conan-Doyle---knihy-pdf.rar
2015-06-28 21:50 - 2015-06-28 21:53 - 22295570 _____ C:\Users\Kryštof\Downloads\Phenomenologies of the City - Henriette Steiner.rar
2015-06-28 18:47 - 2015-06-28 18:47 - 00000484 _____ C:\Users\Kryštof\Documents\cc_20150628_184741.reg
2015-06-28 15:29 - 2015-06-28 15:31 - 08562417 _____ C:\Users\Kryštof\Downloads\Nest Smart Home Automation System Handbook - Gerard O_Driscoll.rar
2015-06-27 23:01 - 2015-06-27 23:01 - 06110433 _____ C:\Users\Kryštof\Downloads\BlenderCourse-Basics-V21-EN.zip
2015-06-27 22:53 - 2015-06-27 22:53 - 12969091 _____ C:\Users\Kryštof\Downloads\pg35898-images.mobi
2015-06-27 22:53 - 2015-06-27 22:53 - 01160572 _____ C:\Users\Kryštof\Downloads\pg23593-images.mobi
2015-06-27 22:53 - 2015-06-27 22:53 - 00993853 _____ C:\Users\Kryštof\Downloads\pg20239.mobi
2015-06-27 21:57 - 2015-06-27 21:59 - 00000000 ____D C:\Users\Kryštof\Downloads\sb4413350
2015-06-27 19:45 - 2015-06-27 21:14 - 1196870582 _____ C:\Users\Kryštof\Downloads\sb4413350.rar
2015-06-27 18:01 - 2015-06-27 18:01 - 00000000 __HDC C:\ProgramData\{8AF32939-989B-460A-8726-CA2C776032A1}
2015-06-26 23:10 - 2015-06-26 23:10 - 00000000 ____D C:\Users\Kryštof\Downloads\the-godfather-english-yify-2380
2015-06-26 23:09 - 2015-06-26 23:09 - 00040076 _____ C:\Users\Kryštof\Downloads\the-godfather-english-yify-2380.zip
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-26 22:03 - 2015-06-01 02:17 - 00000000 ____D C:\FRST
2015-07-26 22:02 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-07-26 21:41 - 2014-12-10 16:50 - 01819634 _____ C:\Windows\WindowsUpdate.log
2015-07-26 21:35 - 2014-09-27 17:42 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2015-07-26 21:33 - 2014-12-06 14:06 - 00003958 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{67F1656E-DDAA-411C-BD94-23A86419255C}
2015-07-26 16:33 - 2015-04-04 13:49 - 00137263 _____ C:\Windows\setupact.log
2015-07-26 11:35 - 2014-12-06 23:01 - 00000000 ____D C:\Users\Kryštof\AppData\Local\Adobe
2015-07-25 11:14 - 2014-12-06 14:03 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-531041961-3592705473-2365900723-1002
2015-07-25 11:07 - 2015-04-05 16:26 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-24 15:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-07-23 18:09 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-07-23 16:23 - 2014-09-27 17:09 - 01749406 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-23 16:23 - 2013-08-23 00:08 - 00740962 _____ C:\Windows\system32\perfh005.dat
2015-07-23 16:23 - 2013-08-23 00:08 - 00152146 _____ C:\Windows\system32\perfc005.dat
2015-07-23 16:15 - 2014-09-27 17:32 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-23 16:15 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-22 15:21 - 2013-08-22 16:44 - 05182096 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-21 20:39 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-07-21 19:45 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-07-20 18:49 - 2014-12-12 17:08 - 00000000 ____D C:\Users\Kryštof\AppData\Roaming\vlc
2015-07-19 21:40 - 2014-12-25 23:31 - 04754944 ___SH C:\Users\Kryštof\Desktop\Thumbs.db
2015-07-19 14:56 - 2014-12-08 00:08 - 00000000 ____D C:\Program Files (x86)\Steam
2015-07-18 15:24 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-07-17 23:33 - 2015-04-04 14:25 - 00302544 _____ C:\Windows\PFRO.log
2015-07-17 01:29 - 2015-04-05 16:26 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-17 01:29 - 2014-12-12 17:55 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-17 01:29 - 2014-12-06 22:08 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-17 01:29 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-07-17 01:29 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-07-17 00:04 - 2014-12-06 17:13 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-07-16 23:57 - 2014-12-06 17:57 - 00000000 ____D C:\Windows\system32\MRT
2015-07-13 23:10 - 2014-12-12 22:22 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-13 23:10 - 2014-12-12 22:22 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-06 08:04 - 2014-12-15 01:50 - 00194048 ___SH C:\Users\Kryštof\Downloads\Thumbs.db
2015-07-05 17:28 - 2015-04-04 12:28 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-05 16:53 - 2015-04-27 14:23 - 00001116 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-05 16:53 - 2015-04-27 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-07-05 16:53 - 2015-04-27 14:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-05 16:49 - 2015-02-08 21:38 - 00000000 ____D C:\skola
2015-07-05 16:48 - 2015-06-19 21:42 - 00000000 ____D C:\Users\Kryštof\Desktop\foto model
2015-07-05 16:42 - 2015-06-22 23:14 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-07-05 16:42 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-07-05 16:42 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2015-07-05 16:41 - 2014-12-06 23:07 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-07-05 16:36 - 2013-08-22 15:25 - 00000301 _____ C:\Windows\win.ini
2015-07-05 16:31 - 2015-03-18 22:58 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-07-05 16:31 - 2014-12-13 19:59 - 00000000 __SHD C:\Users\Kryštof\AppData\Local\EmieBrowserModeList
2015-07-05 16:31 - 2014-12-06 14:05 - 00000000 __SHD C:\Users\Kryštof\AppData\Local\EmieUserList
2015-07-05 16:31 - 2014-12-06 14:05 - 00000000 __SHD C:\Users\Kryštof\AppData\Local\EmieSiteList
2015-07-05 16:31 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-07-05 16:27 - 2015-04-04 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-05 15:04 - 2015-05-20 12:58 - 00007010 _____ C:\Windows\DirectX.log
2015-07-05 15:04 - 2015-05-20 12:58 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-07-05 12:08 - 2015-01-22 16:54 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-07-03 08:43 - 2014-12-06 17:57 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-07-02 13:14 - 2014-12-07 15:08 - 00000000 ____D C:\ZALOHA
2015-06-29 18:13 - 2015-04-17 19:13 - 00000000 ____D C:\ProgramData\16804673851508512880
2015-06-28 18:41 - 2014-09-28 02:21 - 00000000 ____D C:\Windows\Scratch
2015-06-27 18:00 - 2015-02-12 18:51 - 00003822 _____ C:\Windows\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2015-06-27 18:00 - 2015-02-12 18:35 - 00000000 ____D C:\ProgramData\SupportAssistAgent
==================== Files in the root of some directories =======
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Kryštof\AppData\Roaming\3UIITYvFvTnPlY
2015-07-05 21:17 - 2015-07-26 11:32 - 0000024 _____ () C:\Users\Kryštof\AppData\Roaming\appdataFr25.bin
2014-09-27 16:54 - 2014-09-27 16:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-06 14:51 - 2014-12-06 14:51 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Some files in TEMP:
====================
C:\Users\Kryštof\AppData\Local\Temp\bedgaigjca.exe
C:\Users\Kryštof\AppData\Local\Temp\bedgaigjeb.exe
C:\Users\Kryštof\AppData\Local\Temp\mytmpinstaller.exe
C:\Users\Kryštof\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Kryštof\AppData\Local\Temp\nvStInst.exe
C:\Users\Kryštof\AppData\Local\Temp\setup.exe
C:\Users\Kryštof\AppData\Local\Temp\tu17p84.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-20 21:53
==================== End of log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Preventivní kontrola logu
- Přílohy
-
- Addition.rar
- (11.71 KiB) Staženo 50 x
Re: Preventivní kontrola logu
Logfile of random's system information tool 1.10 (written by random/random)
Run by Kryštof at 2015-07-26 22:06:32
Microsoft Windows 8.1
System drive C: has 637 GB (68%) free of 943 GB
Total RAM: 8091 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:06:33, on 26. 7. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Kryštof.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... M%3DIESR02
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Run: [SafeQClient] C:\Program Files (x86)\SafeQ\SafeQ_cli.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Data Vault (DellDataVault) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVault.exe
O23 - Service: Dell Data Vault Wizard (DellDataVaultWiz) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Dell Products, LP. - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit (mi-raysat_3dsmax2013_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) - Dell Inc. - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 13347 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {38755fb6-353d-460c-85e7b519138f993b}
"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe"
"C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe"
"C:\Program Files\Dell\DellDataVault\DellDataVault.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\WLANExt.exe 399667818400
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey 184F362E-1865-5F0F-1006-4819F22413A1 -Reinvoke
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\Explorer.EXE
igfxHK.exe
"C:\Windows\system32\igfxEM.exe" -Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 8b94f5ac-c824-497e-b827-91bdd285b5d3 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
\??\C:\Windows\system32\conhost.exe 0x4
/QuitInfo:0000000000000B80;0000000000000FD4;
/loadhooks /Parent:00000000000012c0
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX5
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --profile-directory=Default
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5796.0.1773040603\1125415912" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3574 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.2.337425815\19894165" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.3.838799386\948698277" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.7.930691401\436668035" /prefetch:673131151
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.9.28306839\1366295864" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5796.10.205255391\1142106438" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE"
"C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE" C:\Users\Kryštof
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.17.1947934750\1384661443" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.21.219486084\663451878" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe47_ Global\UsGthrCtrlFltPipeMssGthrPipe47 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.24.1190412550\817663485" /prefetch:673131151
"C:\Users\Kryštof\Desktop\FRST64.exe"
taskeng.exe {46CC5956-97A5-40FB-9F73-2AF853F514E2}
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
notepad "C:\Users\Kryštof\Desktop\FRST.txt"
notepad "C:\Users\Kryštof\Desktop\Addition.txt"
"C:\Users\Kryštof\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\WmiApSrv.exe
======Scheduled tasks folder======
C:\Windows\tasks\3UIITYvFvTnPlY.job - C:\Users\Kry�tof\AppData\Roaming\3UIITYvFvTnPlY.exe --c=TWHP+YIH+AEI8J/3ac99SI/4KC1HrFmQBhgLHGnH9s5e+aWatGI+n5+sKy0wmuXvs2vD7GVk00Uo0S/kw4UGCqQO0WUHupG157oq00G6UHMT1B99Yr+OxFNPzAQyXiuDh1/QG9yHFYpwzBYqHAxzNynMelgX7Mds6sbkrp3yD2RJIBZihMc1YAmscQsGPb/0Ak5JGl/yIE5FB5OCggbpevMUqwpKqapkS9rgYFfMj8zx4f0uznYjpeTjxgf4Z5fwMVyj6Chi4+9xn50yhTL7W4zZGVXlioEW66xJVNDafc6+96ifrXLrMFKdbzIyE92E4K96WxJzYJyOxxu7cHsHkQ==
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-07 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-07 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-12-07 7506136]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"RtHDVBg_PushButton"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-30 36352]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-06-03 1571696]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-02-11 7825720]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2013-08-23 3760456]
"ISCT Tray"=c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-04-24 5860656]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"AdobeBridge"= []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ADSK DLMSession"=C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [2014-02-05 1627032]
"SafeQClient"=C:\Program Files (x86)\SafeQ\SafeQ_cli.exe [2014-08-22 493056]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-07-21 18:16:29 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 18:16:29 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 18:16:29 ----A---- C:\Windows\system32\atmlib.dll
2015-07-21 18:16:29 ----A---- C:\Windows\system32\atmfd.dll
2015-07-16 23:48:34 ----SHD---- C:\Config.Msi
2015-07-15 23:43:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\generaltel.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-15 23:43:30 ----A---- C:\Windows\system32\appraiser.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\aeinv.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-15 23:43:29 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\shell32.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\profsvc.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\aepdu.dll
2015-07-15 23:43:26 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-15 23:43:23 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-15 23:43:22 ----AC---- C:\Windows\system32\drivers\bthport.sys
2015-07-15 23:43:22 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-15 23:43:22 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 23:43:22 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\WSShared.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\msi.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\authui.dll
2015-07-15 23:43:19 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 23:43:19 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 23:43:19 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-15 23:43:19 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\kerberos.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\certcli.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wudriver.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wucltux.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuapp.exe
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuapi.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-15 23:43:12 ----A---- C:\Windows\system32\wups2.dll
2015-07-15 23:43:12 ----A---- C:\Windows\system32\wups.dll
2015-07-15 23:43:02 ----A---- C:\Windows\system32\wininet.dll
2015-07-15 23:43:02 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-15 23:43:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\vbscript.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\ieui.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-15 23:42:59 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\webcheck.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\msrating.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\jscript.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\iepeers.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-15 23:42:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-15 23:42:19 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-15 23:42:17 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 23:42:17 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 23:42:13 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 23:42:13 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 23:42:12 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-15 23:42:10 ----A---- C:\Windows\system32\apphelp.dll
2015-07-15 23:42:06 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-15 23:42:06 ----A---- C:\Windows\system32\msftedit.dll
2015-07-15 23:42:05 ----A---- C:\Windows\system32\jscript9.dll
2015-07-15 23:42:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-15 23:42:02 ----A---- C:\Windows\system32\mshtml.dll
2015-07-15 23:42:00 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-15 23:41:51 ----A---- C:\Windows\system32\ieframe.dll
2015-07-15 23:41:50 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-15 23:41:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-15 23:41:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-15 23:41:48 ----A---- C:\Windows\system32\urlmon.dll
2015-07-15 23:41:48 ----A---- C:\Windows\system32\iertutil.dll
2015-07-15 23:40:51 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-15 23:40:50 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-05 16:30:07 ----D---- C:\Users\Kryštof\AppData\Roaming\Opera Software
2015-07-05 16:28:54 ----D---- C:\Program Files (x86)\Opera
2015-07-05 16:28:29 ----D---- C:\Program Files (x86)\globalUpdate
2015-07-05 16:24:01 ----D---- C:\Program Files (x86)\Origin Games
2015-07-05 16:23:23 ----D---- C:\Users\Kryštof\AppData\Roaming\Origin
2015-07-05 16:21:10 ----D---- C:\ProgramData\Electronic Arts
2015-07-05 16:21:08 ----D---- C:\Program Files (x86)\Origin
2015-07-05 16:16:07 ----D---- C:\ProgramData\Origin
2015-07-05 15:04:24 ----HD---- C:\Windows\msdownld.tmp
2015-07-05 12:27:21 ----D---- C:\Dragon Age Inquisition
2015-06-29 18:13:46 ----D---- C:\Program Files (x86)\SystemDefend
2015-06-29 18:12:32 ----D---- C:\Program Files (x86)\CuTTuhEPriCCe
2015-06-29 18:11:48 ----D---- C:\ProgramData\{0c4378d7-ce51-3487-0c43-378d7ce5e35f}
2015-06-27 18:01:12 ----HDC---- C:\ProgramData\{8AF32939-989B-460A-8726-CA2C776032A1}
======List of files/folders modified in the last 1 month======
2015-07-26 22:06:33 ----D---- C:\Program Files\trend micro
2015-07-26 22:06:32 ----D---- C:\Windows\Prefetch
2015-07-26 22:05:16 ----D---- C:\FRST
2015-07-26 22:04:48 ----D---- C:\Windows
2015-07-26 22:02:01 ----D---- C:\Windows\system32\sru
2015-07-26 21:43:07 ----D---- C:\Windows\Temp
2015-07-26 21:42:52 ----SHD---- C:\Windows\Installer
2015-07-26 21:35:23 ----D---- C:\Program Files (x86)\Dell Backup and Recovery
2015-07-26 21:30:11 ----A---- C:\Windows\ntbtlog.txt
2015-07-26 15:59:49 ----D---- C:\Windows\Microsoft.NET
2015-07-26 14:56:09 ----D---- C:\Windows\system32\drivers
2015-07-25 11:59:08 ----D---- C:\Windows\system32\config
2015-07-25 11:07:21 ----SD---- C:\Windows\system32\GWX
2015-07-24 15:57:47 ----HD---- C:\Program Files\WindowsApps
2015-07-24 15:57:47 ----D---- C:\Windows\AppReadiness
2015-07-23 18:09:22 ----D---- C:\Windows\system32\NDF
2015-07-23 16:45:34 ----D---- C:\Windows\system32\catroot
2015-07-23 16:23:10 ----RD---- C:\Windows\System32
2015-07-23 16:23:10 ----D---- C:\Windows\Inf
2015-07-23 16:23:10 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-23 16:15:23 ----D---- C:\ProgramData\NVIDIA
2015-07-22 15:23:42 ----D---- C:\Windows\WinSxS
2015-07-21 20:38:43 ----D---- C:\Windows\SysWOW64
2015-07-21 19:45:21 ----D---- C:\Windows\CbsTemp
2015-07-21 19:44:14 ----SHD---- C:\System Volume Information
2015-07-20 18:49:28 ----D---- C:\Users\Kryštof\AppData\Roaming\vlc
2015-07-20 15:38:01 ----A---- C:\IFRToolLog.txt
2015-07-19 14:56:32 ----D---- C:\Program Files (x86)\Steam
2015-07-19 14:35:56 ----D---- C:\Windows\system32\DriverStore
2015-07-18 15:24:05 ----D---- C:\Windows\rescache
2015-07-18 13:33:37 ----D---- C:\Windows\system32\catroot2
2015-07-17 01:29:07 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-17 01:29:07 ----D---- C:\Windows\system32\cs-CZ
2015-07-17 01:29:07 ----D---- C:\Windows\apppatch
2015-07-17 01:29:06 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-17 01:29:05 ----RD---- C:\Windows\ToastData
2015-07-17 01:29:04 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 01:29:04 ----D---- C:\Windows\WinStore
2015-07-17 01:29:04 ----D---- C:\Windows\system32\wbem
2015-07-17 01:29:04 ----D---- C:\Windows\system32\appraiser
2015-07-17 01:29:04 ----D---- C:\Program Files\Internet Explorer
2015-07-17 01:29:04 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-17 00:04:56 ----D---- C:\ProgramData\Microsoft Help
2015-07-16 23:57:39 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-05 17:22:15 ----RD---- C:\Program Files (x86)
2015-07-05 17:22:14 ----D---- C:\Windows\Tasks
2015-07-05 17:22:14 ----D---- C:\Windows\system32\Tasks
2015-07-05 16:53:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-05 16:49:19 ----D---- C:\skola
2015-07-05 16:42:27 ----D---- C:\ProgramData
2015-07-05 16:42:25 ----HD---- C:\Windows\system32\GroupPolicy
2015-07-05 16:42:25 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2015-07-05 16:42:13 ----D---- C:\Program Files (x86)\VS Revo Group
2015-07-05 16:41:35 ----D---- C:\Program Files (x86)\Adobe
2015-07-05 16:36:11 ----A---- C:\Windows\win.ini
2015-07-05 16:31:40 ----D---- C:\Program Files\Common Files\System
2015-07-05 16:31:30 ----D---- C:\Program Files (x86)\Apple Software Update
2015-07-05 16:31:23 ----RD---- C:\Users
2015-07-05 16:28:33 ----SD---- C:\ProgramData\Microsoft
2015-07-05 15:04:49 ----D---- C:\Windows\SYSWOW64\directx
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-07-02 13:14:44 ----D---- C:\ZALOHA
2015-06-29 18:13:07 ----D---- C:\ProgramData\16804673851508512880
2015-06-28 18:41:58 ----D---- C:\Windows\Scratch
2015-06-27 18:00:17 ----D---- C:\ProgramData\SupportAssistAgent
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-29 644968]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-06-17 31376]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2012-07-13 22168]
R1 dtsoftbus01;@oem200.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-01 283064]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-09-28 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btmaux;@oem192.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-02-03 140600]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-02-21 1419064]
R3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2015-01-31 23760]
R3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2015-05-22 24240]
R3 DellRbtn;@oem60.inf,%DellRbtn%;Airplane Mode Switch; C:\Windows\System32\drivers\DellRbtn.sys [2013-01-25 10752]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 ibtusb;@oem193.inf,%ibtusb.SVCDESC_IBT%;Aplikace Intel(R) Wireless Bluetooth(R) 4.0 a vysokorychlostní (HS) adaptér; C:\Windows\system32\DRIVERS\ibtusb.sys [2014-04-04 186064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-04-23 3789824]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2014-02-03 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2014-02-03 22728]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2014-04-03 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-12-11 3771352]
R3 IntcDAud;@oem185.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-04-23 450520]
R3 ISCT;@oem1.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\Windows\System32\drivers\ISCTD.sys [2014-02-03 44744]
R3 iwdbus;@oem188.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-26 27032]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MEIx64;@oem61.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverx64.sys [2013-09-04 99288]
R3 NETwNb64;@oem57.inf,___ %NIC_Service_DispName_WINB_64%;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 8.1 64 Bit; C:\Windows\system32\DRIVERS\Netwbw02.sys [2014-03-13 3434464]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-06-17 11011216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-06-03 19600]
R3 nvvad_WaveExtensible;@oem155.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 PCDSRVC{3B54B31B-D06B6431-06020200}_0;PCDSRVC{3B54B31B-D06B6431-06020200}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\dell\supportassist\pcdsrvc_x64.pkms [2015-05-20 25584]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem56.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-07-27 827096]
R3 RTSPER;@oem181.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-10-19 444632]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-03-22 26624]
R3 ST_ACCEL;@oem184.inf,%ST_Accel.SVCDESC%;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2013-08-06 83456]
R3 SynTP;@oem183.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-03-22 523264]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2015-01-24 22704]
S3 intaud_WaveExtensible;@oem187.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-26 38296]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-07-05 113880]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
S3 USBAAPL64;@oem99.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\System32\drivers\usbscan.sys [2014-10-29 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-20 77128]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-02-03 1198456]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-01-13 1161592]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DellDataVault;Dell Data Vault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2015-05-22 2573520]
R2 DellDataVaultWiz;Dell Data Vault Wizard; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [2015-05-22 201936]
R2 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2015-03-16 237448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-17 632048]
R2 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-12-06 1471352]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-30 15720]
R2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2014-04-04 120016]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-04-26 315376]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-04 131544]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-04-24 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 mi-raysat_3dsmax2013_64;mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [2011-09-15 86016]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-06-03 23007376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-17 937616]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-17 154864]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-12-07 289496]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2014-09-18 1924328]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-17 410768]
R2 SupportAssistAgent;Dell SupportAssist Agent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [2015-06-11 20648]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-23 43696]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-04-26 279024]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-05-22 6516792]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-02-13 643880]
S3 iumsvc;Intel(R) Update Manager; c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-17 284912]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-05 2004488]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
-----------------EOF-----------------
Run by Kryštof at 2015-07-26 22:06:32
Microsoft Windows 8.1
System drive C: has 637 GB (68%) free of 943 GB
Total RAM: 8091 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:06:33, on 26. 7. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Kryštof.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... M%3DIESR02
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Run: [SafeQClient] C:\Program Files (x86)\SafeQ\SafeQ_cli.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Data Vault (DellDataVault) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVault.exe
O23 - Service: Dell Data Vault Wizard (DellDataVaultWiz) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Dell Products, LP. - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit (mi-raysat_3dsmax2013_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) - Dell Inc. - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 13347 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {38755fb6-353d-460c-85e7b519138f993b}
"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe"
"C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe"
"C:\Program Files\Dell\DellDataVault\DellDataVault.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\WLANExt.exe 399667818400
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey 184F362E-1865-5F0F-1006-4819F22413A1 -Reinvoke
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\Explorer.EXE
igfxHK.exe
"C:\Windows\system32\igfxEM.exe" -Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 8b94f5ac-c824-497e-b827-91bdd285b5d3 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
\??\C:\Windows\system32\conhost.exe 0x4
/QuitInfo:0000000000000B80;0000000000000FD4;
/loadhooks /Parent:00000000000012c0
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX5
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --profile-directory=Default
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5796.0.1773040603\1125415912" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3574 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.2.337425815\19894165" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.3.838799386\948698277" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.7.930691401\436668035" /prefetch:673131151
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.9.28306839\1366295864" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5796.10.205255391\1142106438" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE"
"C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE" C:\Users\Kryštof
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.17.1947934750\1384661443" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.21.219486084\663451878" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe47_ Global\UsGthrCtrlFltPipeMssGthrPipe47 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Enabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/GoogleNow/Enable/*IconNTP/Default/*LoadStaleCacheExperiment/Disabled/*LocalNTPFast/Enabled/*NewProfileManagement/Enabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/OneWeek/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Disabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_46/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Default/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5796.24.1190412550\817663485" /prefetch:673131151
"C:\Users\Kryštof\Desktop\FRST64.exe"
taskeng.exe {46CC5956-97A5-40FB-9F73-2AF853F514E2}
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
notepad "C:\Users\Kryštof\Desktop\FRST.txt"
notepad "C:\Users\Kryštof\Desktop\Addition.txt"
"C:\Users\Kryštof\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\WmiApSrv.exe
======Scheduled tasks folder======
C:\Windows\tasks\3UIITYvFvTnPlY.job - C:\Users\Kry�tof\AppData\Roaming\3UIITYvFvTnPlY.exe --c=TWHP+YIH+AEI8J/3ac99SI/4KC1HrFmQBhgLHGnH9s5e+aWatGI+n5+sKy0wmuXvs2vD7GVk00Uo0S/kw4UGCqQO0WUHupG157oq00G6UHMT1B99Yr+OxFNPzAQyXiuDh1/QG9yHFYpwzBYqHAxzNynMelgX7Mds6sbkrp3yD2RJIBZihMc1YAmscQsGPb/0Ak5JGl/yIE5FB5OCggbpevMUqwpKqapkS9rgYFfMj8zx4f0uznYjpeTjxgf4Z5fwMVyj6Chi4+9xn50yhTL7W4zZGVXlioEW66xJVNDafc6+96ifrXLrMFKdbzIyE92E4K96WxJzYJyOxxu7cHsHkQ==
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-07 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-07 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-12-07 7506136]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"RtHDVBg_PushButton"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-30 36352]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-06-03 1571696]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-02-11 7825720]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2013-08-23 3760456]
"ISCT Tray"=c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-04-24 5860656]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"AdobeBridge"= []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ADSK DLMSession"=C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [2014-02-05 1627032]
"SafeQClient"=C:\Program Files (x86)\SafeQ\SafeQ_cli.exe [2014-08-22 493056]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-07-21 18:16:29 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 18:16:29 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 18:16:29 ----A---- C:\Windows\system32\atmlib.dll
2015-07-21 18:16:29 ----A---- C:\Windows\system32\atmfd.dll
2015-07-16 23:48:34 ----SHD---- C:\Config.Msi
2015-07-15 23:43:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\generaltel.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-15 23:43:30 ----A---- C:\Windows\system32\appraiser.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\aeinv.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-15 23:43:29 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\shell32.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\profsvc.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\aepdu.dll
2015-07-15 23:43:26 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-15 23:43:23 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-15 23:43:22 ----AC---- C:\Windows\system32\drivers\bthport.sys
2015-07-15 23:43:22 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-15 23:43:22 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 23:43:22 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\WSShared.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\msi.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\authui.dll
2015-07-15 23:43:19 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 23:43:19 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 23:43:19 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-15 23:43:19 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\kerberos.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\certcli.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wudriver.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wucltux.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuapp.exe
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuapi.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-15 23:43:12 ----A---- C:\Windows\system32\wups2.dll
2015-07-15 23:43:12 ----A---- C:\Windows\system32\wups.dll
2015-07-15 23:43:02 ----A---- C:\Windows\system32\wininet.dll
2015-07-15 23:43:02 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-15 23:43:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\vbscript.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\ieui.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-15 23:42:59 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\webcheck.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\msrating.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\jscript.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\iepeers.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-15 23:42:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-15 23:42:19 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-15 23:42:17 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 23:42:17 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 23:42:13 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 23:42:13 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 23:42:12 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-15 23:42:10 ----A---- C:\Windows\system32\apphelp.dll
2015-07-15 23:42:06 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-15 23:42:06 ----A---- C:\Windows\system32\msftedit.dll
2015-07-15 23:42:05 ----A---- C:\Windows\system32\jscript9.dll
2015-07-15 23:42:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-15 23:42:02 ----A---- C:\Windows\system32\mshtml.dll
2015-07-15 23:42:00 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-15 23:41:51 ----A---- C:\Windows\system32\ieframe.dll
2015-07-15 23:41:50 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-15 23:41:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-15 23:41:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-15 23:41:48 ----A---- C:\Windows\system32\urlmon.dll
2015-07-15 23:41:48 ----A---- C:\Windows\system32\iertutil.dll
2015-07-15 23:40:51 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-15 23:40:50 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-05 16:30:07 ----D---- C:\Users\Kryštof\AppData\Roaming\Opera Software
2015-07-05 16:28:54 ----D---- C:\Program Files (x86)\Opera
2015-07-05 16:28:29 ----D---- C:\Program Files (x86)\globalUpdate
2015-07-05 16:24:01 ----D---- C:\Program Files (x86)\Origin Games
2015-07-05 16:23:23 ----D---- C:\Users\Kryštof\AppData\Roaming\Origin
2015-07-05 16:21:10 ----D---- C:\ProgramData\Electronic Arts
2015-07-05 16:21:08 ----D---- C:\Program Files (x86)\Origin
2015-07-05 16:16:07 ----D---- C:\ProgramData\Origin
2015-07-05 15:04:24 ----HD---- C:\Windows\msdownld.tmp
2015-07-05 12:27:21 ----D---- C:\Dragon Age Inquisition
2015-06-29 18:13:46 ----D---- C:\Program Files (x86)\SystemDefend
2015-06-29 18:12:32 ----D---- C:\Program Files (x86)\CuTTuhEPriCCe
2015-06-29 18:11:48 ----D---- C:\ProgramData\{0c4378d7-ce51-3487-0c43-378d7ce5e35f}
2015-06-27 18:01:12 ----HDC---- C:\ProgramData\{8AF32939-989B-460A-8726-CA2C776032A1}
======List of files/folders modified in the last 1 month======
2015-07-26 22:06:33 ----D---- C:\Program Files\trend micro
2015-07-26 22:06:32 ----D---- C:\Windows\Prefetch
2015-07-26 22:05:16 ----D---- C:\FRST
2015-07-26 22:04:48 ----D---- C:\Windows
2015-07-26 22:02:01 ----D---- C:\Windows\system32\sru
2015-07-26 21:43:07 ----D---- C:\Windows\Temp
2015-07-26 21:42:52 ----SHD---- C:\Windows\Installer
2015-07-26 21:35:23 ----D---- C:\Program Files (x86)\Dell Backup and Recovery
2015-07-26 21:30:11 ----A---- C:\Windows\ntbtlog.txt
2015-07-26 15:59:49 ----D---- C:\Windows\Microsoft.NET
2015-07-26 14:56:09 ----D---- C:\Windows\system32\drivers
2015-07-25 11:59:08 ----D---- C:\Windows\system32\config
2015-07-25 11:07:21 ----SD---- C:\Windows\system32\GWX
2015-07-24 15:57:47 ----HD---- C:\Program Files\WindowsApps
2015-07-24 15:57:47 ----D---- C:\Windows\AppReadiness
2015-07-23 18:09:22 ----D---- C:\Windows\system32\NDF
2015-07-23 16:45:34 ----D---- C:\Windows\system32\catroot
2015-07-23 16:23:10 ----RD---- C:\Windows\System32
2015-07-23 16:23:10 ----D---- C:\Windows\Inf
2015-07-23 16:23:10 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-23 16:15:23 ----D---- C:\ProgramData\NVIDIA
2015-07-22 15:23:42 ----D---- C:\Windows\WinSxS
2015-07-21 20:38:43 ----D---- C:\Windows\SysWOW64
2015-07-21 19:45:21 ----D---- C:\Windows\CbsTemp
2015-07-21 19:44:14 ----SHD---- C:\System Volume Information
2015-07-20 18:49:28 ----D---- C:\Users\Kryštof\AppData\Roaming\vlc
2015-07-20 15:38:01 ----A---- C:\IFRToolLog.txt
2015-07-19 14:56:32 ----D---- C:\Program Files (x86)\Steam
2015-07-19 14:35:56 ----D---- C:\Windows\system32\DriverStore
2015-07-18 15:24:05 ----D---- C:\Windows\rescache
2015-07-18 13:33:37 ----D---- C:\Windows\system32\catroot2
2015-07-17 01:29:07 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-17 01:29:07 ----D---- C:\Windows\system32\cs-CZ
2015-07-17 01:29:07 ----D---- C:\Windows\apppatch
2015-07-17 01:29:06 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-17 01:29:05 ----RD---- C:\Windows\ToastData
2015-07-17 01:29:04 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 01:29:04 ----D---- C:\Windows\WinStore
2015-07-17 01:29:04 ----D---- C:\Windows\system32\wbem
2015-07-17 01:29:04 ----D---- C:\Windows\system32\appraiser
2015-07-17 01:29:04 ----D---- C:\Program Files\Internet Explorer
2015-07-17 01:29:04 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-17 00:04:56 ----D---- C:\ProgramData\Microsoft Help
2015-07-16 23:57:39 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-05 17:22:15 ----RD---- C:\Program Files (x86)
2015-07-05 17:22:14 ----D---- C:\Windows\Tasks
2015-07-05 17:22:14 ----D---- C:\Windows\system32\Tasks
2015-07-05 16:53:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-05 16:49:19 ----D---- C:\skola
2015-07-05 16:42:27 ----D---- C:\ProgramData
2015-07-05 16:42:25 ----HD---- C:\Windows\system32\GroupPolicy
2015-07-05 16:42:25 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2015-07-05 16:42:13 ----D---- C:\Program Files (x86)\VS Revo Group
2015-07-05 16:41:35 ----D---- C:\Program Files (x86)\Adobe
2015-07-05 16:36:11 ----A---- C:\Windows\win.ini
2015-07-05 16:31:40 ----D---- C:\Program Files\Common Files\System
2015-07-05 16:31:30 ----D---- C:\Program Files (x86)\Apple Software Update
2015-07-05 16:31:23 ----RD---- C:\Users
2015-07-05 16:28:33 ----SD---- C:\ProgramData\Microsoft
2015-07-05 15:04:49 ----D---- C:\Windows\SYSWOW64\directx
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-07-02 13:14:44 ----D---- C:\ZALOHA
2015-06-29 18:13:07 ----D---- C:\ProgramData\16804673851508512880
2015-06-28 18:41:58 ----D---- C:\Windows\Scratch
2015-06-27 18:00:17 ----D---- C:\ProgramData\SupportAssistAgent
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-29 644968]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-06-17 31376]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2012-07-13 22168]
R1 dtsoftbus01;@oem200.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-01 283064]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-09-28 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btmaux;@oem192.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-02-03 140600]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-02-21 1419064]
R3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2015-01-31 23760]
R3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2015-05-22 24240]
R3 DellRbtn;@oem60.inf,%DellRbtn%;Airplane Mode Switch; C:\Windows\System32\drivers\DellRbtn.sys [2013-01-25 10752]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 ibtusb;@oem193.inf,%ibtusb.SVCDESC_IBT%;Aplikace Intel(R) Wireless Bluetooth(R) 4.0 a vysokorychlostní (HS) adaptér; C:\Windows\system32\DRIVERS\ibtusb.sys [2014-04-04 186064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-04-23 3789824]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2014-02-03 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2014-02-03 22728]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2014-04-03 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-12-11 3771352]
R3 IntcDAud;@oem185.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-04-23 450520]
R3 ISCT;@oem1.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\Windows\System32\drivers\ISCTD.sys [2014-02-03 44744]
R3 iwdbus;@oem188.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-26 27032]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MEIx64;@oem61.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverx64.sys [2013-09-04 99288]
R3 NETwNb64;@oem57.inf,___ %NIC_Service_DispName_WINB_64%;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 8.1 64 Bit; C:\Windows\system32\DRIVERS\Netwbw02.sys [2014-03-13 3434464]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-06-17 11011216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-06-03 19600]
R3 nvvad_WaveExtensible;@oem155.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 PCDSRVC{3B54B31B-D06B6431-06020200}_0;PCDSRVC{3B54B31B-D06B6431-06020200}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\dell\supportassist\pcdsrvc_x64.pkms [2015-05-20 25584]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem56.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-07-27 827096]
R3 RTSPER;@oem181.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-10-19 444632]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-03-22 26624]
R3 ST_ACCEL;@oem184.inf,%ST_Accel.SVCDESC%;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2013-08-06 83456]
R3 SynTP;@oem183.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-03-22 523264]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2015-01-24 22704]
S3 intaud_WaveExtensible;@oem187.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-26 38296]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-07-05 113880]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
S3 USBAAPL64;@oem99.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\System32\drivers\usbscan.sys [2014-10-29 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-20 77128]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-02-03 1198456]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-01-13 1161592]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DellDataVault;Dell Data Vault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2015-05-22 2573520]
R2 DellDataVaultWiz;Dell Data Vault Wizard; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [2015-05-22 201936]
R2 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2015-03-16 237448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-17 632048]
R2 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-12-06 1471352]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-30 15720]
R2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2014-04-04 120016]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-04-26 315376]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-04 131544]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-04-24 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 mi-raysat_3dsmax2013_64;mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [2011-09-15 86016]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-06-03 23007376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-17 937616]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-17 154864]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-12-07 289496]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2014-09-18 1924328]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-17 410768]
R2 SupportAssistAgent;Dell SupportAssist Agent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [2015-06-11 20648]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-23 43696]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-04-26 279024]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-05-22 6516792]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-02-13 643880]
S3 iumsvc;Intel(R) Update Manager; c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-17 284912]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-05 2004488]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
-----------------EOF-----------------
Re: Preventivní kontrola logu
Zdravím,
stáhni a spusť OTMoveIt
do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:
klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,
pokud aplikace bude požadovat restart, klikni na YES
v tom případě sem zkopíruj obsah logu uloženého na C:\_OTMoveIt\MovedFiles\
Stáhni a ulož na plochu AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po dokončení skenu klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zkopíruj Report.
V Knihovně Plánovače úloh zakaž :
3UIITYvFvTnPlY
Tohle :
C:\Users\Kryštof\AppData\Roaming\3UIITYvFvTnPlY.exe
otestuj na VIRUSTOTAL
(po načtení stránky klikni na tlačítko Procházet - Choose File, najdi cestu k výše zmíněnému souboru
nebo tam výše zmíněný text nakopíruj a klikni na tlačítko Odeslat soubor - Scan It!
trvá to okolo deseti minut pak mi sem zkopíruj link, to je ten řádek nahoře v prohlížeči)
Pokud ti to napíše že soubor již byl testován nech Otestovat znovu - Reanalyse.
stáhni a spusť OTMoveIt
do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:
Kód: Vybrat vše
:processes
explorer.exe
:files
C:\Users\Kryštof\AppData\Local\Temp\bedgaigjca.exe
C:\Users\Kryštof\AppData\Local\Temp\bedgaigjeb.exe
C:\Users\Kryštof\AppData\Local\Temp\mytmpinstaller.exe
C:\Users\Kryštof\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Kryštof\AppData\Local\Temp\nvStInst.exe
C:\Users\Kryštof\AppData\Local\Temp\setup.exe
C:\Users\Kryštof\AppData\Local\Temp\tu17p84.exe
:commands
[purity]
[emptytemp]
[start explorer]pokud aplikace bude požadovat restart, klikni na YES
v tom případě sem zkopíruj obsah logu uloženého na C:\_OTMoveIt\MovedFiles\
Stáhni a ulož na plochu AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po dokončení skenu klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zkopíruj Report.
V Knihovně Plánovače úloh zakaž :
3UIITYvFvTnPlY
Tohle :
C:\Users\Kryštof\AppData\Roaming\3UIITYvFvTnPlY.exe
otestuj na VIRUSTOTAL
(po načtení stránky klikni na tlačítko Procházet - Choose File, najdi cestu k výše zmíněnému souboru
nebo tam výše zmíněný text nakopíruj a klikni na tlačítko Odeslat soubor - Scan It!
trvá to okolo deseti minut pak mi sem zkopíruj link, to je ten řádek nahoře v prohlížeči)
Pokud ti to napíše že soubor již byl testován nech Otestovat znovu - Reanalyse.
Re: Preventivní kontrola logu
C:\Users\Kryštof\AppData\Roaming\3UIITYvFvTnPlY.exe
nenalezen, co s tím?
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\Users\Kryštof\AppData\Local\Temp\bedgaigjca.exe moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\bedgaigjeb.exe moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\mytmpinstaller.exe moved successfully.
DllUnregisterServer procedure not found in C:\Users\Kryštof\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Kryštof\AppData\Local\Temp\nvSCPAPI.dll moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\nvStInst.exe moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\setup.exe moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\tu17p84.exe moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Krytof
User: Kryçtof
->Temporary Internet Files folder emptied: 128 bytes
User: Kryštof
->Temp folder emptied: 813873419 bytes
->Temporary Internet Files folder emptied: 113424007 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 421798682 bytes
->Flash cache emptied: 492 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 58843246 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 55655 bytes
Total Files Cleaned = 1 343,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 07272015_145136
Files moved on Reboot...
C:\Users\Kryštof\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
Registry entries deleted on Reboot...
# AdwCleaner v4.208 - Log vytvořen 27/07/2015 v 14:57:58
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-26.2 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Kryštof - DV9
# Spuštěno z : C:\Users\Kryštof\Desktop\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\Device
Složka Smazáno : C:\ProgramData\{0c4378d7-ce51-3487-0c43-378d7ce5e35f}
Složka Smazáno : C:\Program Files (x86)\globalUpdate
Složka Smazáno : C:\Program Files (x86)\SystemDefend
Složka Smazáno : C:\Program Files (x86)\CuTTuhEPriCCe
Složka Smazáno : C:\Users\Kryçtof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
Složka Smazáno : C:\Users\Kryštof\AppData\Local\globalUpdate
Soubor Smazáno : C:\Program Files\Common Files\System\SysMenu.dll
Soubor Smazáno : C:\Program Files\Common Files\System\SysMenu64.dll
Soubor Smazáno : C:\Users\Kryçtof\Desktop\YTDownloader.lnk
Soubor Smazáno : C:\Users\Kryštof\AppData\Roaming\3UIITYvFvTnPlY
Soubor Smazáno : C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Soubor Smazáno : C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
***** [ Naplánované úlohy ] *****
Úloha Smazáno : 3UIITYvFvTnPlY
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\3102fd5b-e731-63ed-51f5-ff38ee5292af
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Klíč Smazáno : [x64] HKLM\SOFTWARE\ShopperPro
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Google Chrome v43.0.2357.130
[C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
-\\ Opera v0.0.0.0
*************************
AdwCleaner[R0].txt - [1836 bytů] - [01/06/2015 15:22:01]
AdwCleaner[R1].txt - [1154 bytů] - [22/06/2015 23:15:49]
AdwCleaner[R2].txt - [3551 bytů] - [27/07/2015 14:56:52]
AdwCleaner[S0].txt - [1843 bytů] - [01/06/2015 15:23:05]
AdwCleaner[S1].txt - [3391 bytů] - [27/07/2015 14:57:58]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [3449 bytů] ##########
nenalezen, co s tím?
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\Users\Kryštof\AppData\Local\Temp\bedgaigjca.exe moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\bedgaigjeb.exe moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\mytmpinstaller.exe moved successfully.
DllUnregisterServer procedure not found in C:\Users\Kryštof\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Kryštof\AppData\Local\Temp\nvSCPAPI.dll moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\nvStInst.exe moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\setup.exe moved successfully.
C:\Users\Kryštof\AppData\Local\Temp\tu17p84.exe moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Krytof
User: Kryçtof
->Temporary Internet Files folder emptied: 128 bytes
User: Kryštof
->Temp folder emptied: 813873419 bytes
->Temporary Internet Files folder emptied: 113424007 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 421798682 bytes
->Flash cache emptied: 492 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 58843246 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 55655 bytes
Total Files Cleaned = 1 343,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 07272015_145136
Files moved on Reboot...
C:\Users\Kryštof\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
Registry entries deleted on Reboot...
# AdwCleaner v4.208 - Log vytvořen 27/07/2015 v 14:57:58
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-26.2 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Kryštof - DV9
# Spuštěno z : C:\Users\Kryštof\Desktop\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\Device
Složka Smazáno : C:\ProgramData\{0c4378d7-ce51-3487-0c43-378d7ce5e35f}
Složka Smazáno : C:\Program Files (x86)\globalUpdate
Složka Smazáno : C:\Program Files (x86)\SystemDefend
Složka Smazáno : C:\Program Files (x86)\CuTTuhEPriCCe
Složka Smazáno : C:\Users\Kryçtof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
Složka Smazáno : C:\Users\Kryštof\AppData\Local\globalUpdate
Soubor Smazáno : C:\Program Files\Common Files\System\SysMenu.dll
Soubor Smazáno : C:\Program Files\Common Files\System\SysMenu64.dll
Soubor Smazáno : C:\Users\Kryçtof\Desktop\YTDownloader.lnk
Soubor Smazáno : C:\Users\Kryštof\AppData\Roaming\3UIITYvFvTnPlY
Soubor Smazáno : C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Soubor Smazáno : C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
***** [ Naplánované úlohy ] *****
Úloha Smazáno : 3UIITYvFvTnPlY
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\3102fd5b-e731-63ed-51f5-ff38ee5292af
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Klíč Smazáno : [x64] HKLM\SOFTWARE\ShopperPro
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Google Chrome v43.0.2357.130
[C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
-\\ Opera v0.0.0.0
*************************
AdwCleaner[R0].txt - [1836 bytů] - [01/06/2015 15:22:01]
AdwCleaner[R1].txt - [1154 bytů] - [22/06/2015 23:15:49]
AdwCleaner[R2].txt - [3551 bytů] - [27/07/2015 14:56:52]
AdwCleaner[S0].txt - [1843 bytů] - [01/06/2015 15:23:05]
AdwCleaner[S1].txt - [3391 bytů] - [27/07/2015 14:57:58]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [3449 bytů] ##########
Re: Preventivní kontrola logu
V pořádku - Soubor Smazáno : C:\Users\Kryštof\AppData\Roaming\3UIITYvFvTnPlYkrystof37 píše:C:\Users\Kryštof\AppData\Roaming\3UIITYvFvTnPlY.exe
nenalezen, co s tím?
Znovu spusť OTMoveIt a nahoře v aplikaci klini na CleanUP!
tímto po sobě uklidí.
Spusť skener Cure It podle TOHOTO návodu
po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.
(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)
Re: Preventivní kontrola logu
Total 23909739526 bytes in 38026 files scanned (112234 objects)
Total 37983 files (112184 objects) are clean
Total 1 file are infected
Total 49 files are raised error condition
Scan time is 00:22:19.920
Total 37983 files (112184 objects) are clean
Total 1 file are infected
Total 49 files are raised error condition
Scan time is 00:22:19.920
Re: Preventivní kontrola logu
Trochu blbne chrome, vyskakuji : Ads by AddFree App
Re: Preventivní kontrola logu
To že poslední dobou blbne Chrome je asi normální, ten Ad Free App by měl jít normálně odinstalovat.krystof37 píše:Trochu blbne chrome, vyskakuji : Ads by AddFree App
V Chrome klikni na Nastavení, dále na Rozšíření kde odstraň zmíněný AddFree App, případně i jiné jemu podobné.
Pak ještě PC pro jistotu projeď přes Malwarebytes který tam máš a dej zase vědět jaký je stav.
Re: Preventivní kontrola logu
Ano, někdy se tam nějaké rozšíření objeví, ale tentokrát tam nic není,
ani v Programech a funkcích není nic tomu podobné.
ani v Programech a funkcích není nic tomu podobné.
Re: Preventivní kontrola logu
Logfile of random's system information tool 1.10 (written by random/random)
Run by Kryštof at 2015-07-29 22:38:46
Microsoft Windows 8.1
System drive C: has 655 GB (69%) free of 943 GB
Total RAM: 8091 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:38:47, on 29. 7. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\trend micro\Kryštof.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... M%3DIESR02
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Run: [SafeQClient] C:\Program Files (x86)\SafeQ\SafeQ_cli.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Data Vault (DellDataVault) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVault.exe
O23 - Service: Dell Data Vault Wizard (DellDataVaultWiz) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Dell Products, LP. - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit (mi-raysat_3dsmax2013_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) - Dell Inc. - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 12820 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 1014322418144
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
dashost.exe {275b0955-5934-464b-9574a8f3881c04b5}
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe"
"C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe"
"C:\Program Files\Dell\DellDataVault\DellDataVault.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\Explorer.EXE
igfxHK.exe
"C:\Windows\system32\igfxEM.exe" -Embedding
/QuitInfo:00000000000009C8;0000000000000E4C;
/loadhooks /Parent:0000000000001068
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX5
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE"
"C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE" C:\Users\Kryštof
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files\Dell\SupportAssist\imstrayicon.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 8b94f5ac-c824-497e-b827-91bdd285b5d3 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\wbem\WmiApSrv.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
/QuitInfo:000000000000094C;0000000000000E00;
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Kryštof\Desktop\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-07 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-07 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-12-07 7506136]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"RtHDVBg_PushButton"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-30 36352]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-06-03 1571696]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-02-11 7825720]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2013-08-23 3760456]
"ISCT Tray"=c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-04-24 5860656]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"AdobeBridge"= []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ADSK DLMSession"=C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [2014-02-05 1627032]
"SafeQClient"=C:\Program Files (x86)\SafeQ\SafeQ_cli.exe [2014-08-22 493056]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-07-29 22:35:37 ----D---- C:\rsit
2015-07-28 11:23:18 ----D---- C:\Device
2015-07-28 10:36:06 ----A---- C:\Windows\system32\appraiser.dll
2015-07-21 18:16:29 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 18:16:29 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 18:16:29 ----A---- C:\Windows\system32\atmlib.dll
2015-07-21 18:16:29 ----A---- C:\Windows\system32\atmfd.dll
2015-07-16 23:48:34 ----SHD---- C:\Config.Msi
2015-07-15 23:43:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\generaltel.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-15 23:43:30 ----A---- C:\Windows\system32\aeinv.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-15 23:43:29 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\shell32.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\profsvc.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\aepdu.dll
2015-07-15 23:43:26 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-15 23:43:23 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-15 23:43:22 ----AC---- C:\Windows\system32\drivers\bthport.sys
2015-07-15 23:43:22 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-15 23:43:22 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 23:43:22 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\WSShared.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\msi.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\authui.dll
2015-07-15 23:43:19 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 23:43:19 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 23:43:19 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-15 23:43:19 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\kerberos.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\certcli.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wudriver.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wucltux.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuapp.exe
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuapi.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-15 23:43:12 ----A---- C:\Windows\system32\wups2.dll
2015-07-15 23:43:12 ----A---- C:\Windows\system32\wups.dll
2015-07-15 23:43:02 ----A---- C:\Windows\system32\wininet.dll
2015-07-15 23:43:02 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-15 23:43:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\vbscript.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\ieui.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-15 23:42:59 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\webcheck.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\msrating.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\jscript.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\iepeers.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-15 23:42:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-15 23:42:19 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-15 23:42:17 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 23:42:17 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 23:42:13 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 23:42:13 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 23:42:12 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-15 23:42:10 ----A---- C:\Windows\system32\apphelp.dll
2015-07-15 23:42:06 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-15 23:42:06 ----A---- C:\Windows\system32\msftedit.dll
2015-07-15 23:42:05 ----A---- C:\Windows\system32\jscript9.dll
2015-07-15 23:42:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-15 23:42:02 ----A---- C:\Windows\system32\mshtml.dll
2015-07-15 23:42:00 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-15 23:41:51 ----A---- C:\Windows\system32\ieframe.dll
2015-07-15 23:41:50 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-15 23:41:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-15 23:41:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-15 23:41:48 ----A---- C:\Windows\system32\urlmon.dll
2015-07-15 23:41:48 ----A---- C:\Windows\system32\iertutil.dll
2015-07-15 23:40:51 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-15 23:40:50 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-05 16:30:07 ----D---- C:\Users\Kryštof\AppData\Roaming\Opera Software
2015-07-05 16:28:54 ----D---- C:\Program Files (x86)\Opera
2015-07-05 16:24:01 ----D---- C:\Program Files (x86)\Origin Games
2015-07-05 16:23:23 ----D---- C:\Users\Kryštof\AppData\Roaming\Origin
2015-07-05 16:21:10 ----D---- C:\ProgramData\Electronic Arts
2015-07-05 16:21:08 ----D---- C:\Program Files (x86)\Origin
2015-07-05 16:16:07 ----D---- C:\ProgramData\Origin
2015-07-05 12:27:21 ----D---- C:\Dragon Age Inquisition
======List of files/folders modified in the last 1 month======
2015-07-29 22:38:46 ----D---- C:\Program Files\trend micro
2015-07-29 22:36:32 ----A---- C:\Windows\ntbtlog.txt
2015-07-29 22:36:23 ----D---- C:\Windows\Prefetch
2015-07-29 22:00:00 ----D---- C:\Windows\system32\sru
2015-07-29 21:46:45 ----D---- C:\Windows\Temp
2015-07-29 21:20:37 ----D---- C:\Windows\AppReadiness
2015-07-29 14:27:47 ----D---- C:\Windows\system32\drivers
2015-07-29 14:06:12 ----D---- C:\Windows\system32\catroot
2015-07-29 14:01:16 ----SHD---- C:\Windows\Installer
2015-07-29 13:54:13 ----D---- C:\Program Files (x86)\Dell Backup and Recovery
2015-07-29 13:53:08 ----D---- C:\Windows\system32\config
2015-07-29 13:52:10 ----HD---- C:\Program Files\WindowsApps
2015-07-28 17:28:18 ----RD---- C:\Windows\System32
2015-07-28 17:28:18 ----D---- C:\Windows\Inf
2015-07-28 17:28:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-28 17:20:41 ----D---- C:\ProgramData\NVIDIA
2015-07-28 12:55:55 ----D---- C:\Windows\Microsoft.NET
2015-07-28 12:08:05 ----D---- C:\Windows\WinSxS
2015-07-28 12:07:24 ----D---- C:\ProgramData
2015-07-28 11:14:52 ----D---- C:\Windows\CbsTemp
2015-07-28 11:14:13 ----SHD---- C:\System Volume Information
2015-07-27 14:58:01 ----D---- C:\AdwCleaner
2015-07-27 14:57:59 ----D---- C:\Windows\Tasks
2015-07-27 14:57:58 ----RD---- C:\Program Files (x86)
2015-07-27 14:57:58 ----D---- C:\Program Files\Common Files\System
2015-07-27 14:51:56 ----D---- C:\Windows
2015-07-27 14:49:02 ----D---- C:\Users\Kryštof\AppData\Roaming\vlc
2015-07-26 22:05:16 ----D---- C:\FRST
2015-07-25 11:07:21 ----SD---- C:\Windows\system32\GWX
2015-07-23 18:09:22 ----D---- C:\Windows\system32\NDF
2015-07-21 20:38:43 ----D---- C:\Windows\SysWOW64
2015-07-20 15:38:01 ----A---- C:\IFRToolLog.txt
2015-07-19 14:56:32 ----D---- C:\Program Files (x86)\Steam
2015-07-19 14:35:56 ----D---- C:\Windows\system32\DriverStore
2015-07-18 15:24:05 ----D---- C:\Windows\rescache
2015-07-18 13:33:37 ----D---- C:\Windows\system32\catroot2
2015-07-17 01:29:07 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-17 01:29:07 ----D---- C:\Windows\system32\cs-CZ
2015-07-17 01:29:07 ----D---- C:\Windows\apppatch
2015-07-17 01:29:06 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-17 01:29:05 ----RD---- C:\Windows\ToastData
2015-07-17 01:29:04 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 01:29:04 ----D---- C:\Windows\WinStore
2015-07-17 01:29:04 ----D---- C:\Windows\system32\wbem
2015-07-17 01:29:04 ----D---- C:\Windows\system32\appraiser
2015-07-17 01:29:04 ----D---- C:\Program Files\Internet Explorer
2015-07-17 01:29:04 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-17 00:04:56 ----D---- C:\ProgramData\Microsoft Help
2015-07-16 23:57:39 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-05 17:22:14 ----D---- C:\Windows\system32\Tasks
2015-07-05 16:53:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-05 16:49:19 ----D---- C:\skola
2015-07-05 16:42:25 ----HD---- C:\Windows\system32\GroupPolicy
2015-07-05 16:42:25 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2015-07-05 16:42:13 ----D---- C:\Program Files (x86)\VS Revo Group
2015-07-05 16:41:35 ----D---- C:\Program Files (x86)\Adobe
2015-07-05 16:36:11 ----A---- C:\Windows\win.ini
2015-07-05 16:31:30 ----D---- C:\Program Files (x86)\Apple Software Update
2015-07-05 16:31:23 ----RD---- C:\Users
2015-07-05 16:28:33 ----SD---- C:\ProgramData\Microsoft
2015-07-05 15:04:49 ----D---- C:\Windows\SYSWOW64\directx
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-07-02 13:14:44 ----D---- C:\ZALOHA
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-29 644968]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-06-17 31376]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2012-07-13 22168]
R1 dtsoftbus01;@oem200.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-01 283064]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-09-28 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btmaux;@oem192.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-02-03 140600]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-02-21 1419064]
R3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2015-01-31 23760]
R3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2015-05-22 24240]
R3 DellRbtn;@oem60.inf,%DellRbtn%;Airplane Mode Switch; C:\Windows\System32\drivers\DellRbtn.sys [2013-01-25 10752]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 ibtusb;@oem193.inf,%ibtusb.SVCDESC_IBT%;Aplikace Intel(R) Wireless Bluetooth(R) 4.0 a vysokorychlostní (HS) adaptér; C:\Windows\system32\DRIVERS\ibtusb.sys [2014-04-04 186064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-04-23 3789824]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2014-02-03 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2014-02-03 22728]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2014-04-03 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-12-11 3771352]
R3 IntcDAud;@oem185.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-04-23 450520]
R3 ISCT;@oem1.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\Windows\System32\drivers\ISCTD.sys [2014-02-03 44744]
R3 iwdbus;@oem188.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-26 27032]
R3 MEIx64;@oem61.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverx64.sys [2013-09-04 99288]
R3 NETwNb64;@oem57.inf,___ %NIC_Service_DispName_WINB_64%;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 8.1 64 Bit; C:\Windows\system32\DRIVERS\Netwbw02.sys [2014-03-13 3434464]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-06-17 11011216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-06-03 19600]
R3 nvvad_WaveExtensible;@oem155.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 PCDSRVC{3B54B31B-D06B6431-06020200}_0;PCDSRVC{3B54B31B-D06B6431-06020200}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\dell\supportassist\pcdsrvc_x64.pkms [2015-05-20 25584]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem56.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-07-27 827096]
R3 RTSPER;@oem181.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-10-19 444632]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-03-22 26624]
R3 ST_ACCEL;@oem184.inf,%ST_Accel.SVCDESC%;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2013-08-06 83456]
R3 SynTP;@oem183.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-03-22 523264]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2015-01-24 22704]
S3 intaud_WaveExtensible;@oem187.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-26 38296]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
S3 USBAAPL64;@oem99.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\System32\drivers\usbscan.sys [2014-10-29 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-20 77128]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-02-03 1198456]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-01-13 1161592]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DellDataVault;Dell Data Vault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2015-05-22 2573520]
R2 DellDataVaultWiz;Dell Data Vault Wizard; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [2015-05-22 201936]
R2 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2015-03-16 237448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-17 632048]
R2 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-12-06 1471352]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-30 15720]
R2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2014-04-04 120016]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-04-26 315376]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-04 131544]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-04-24 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 mi-raysat_3dsmax2013_64;mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [2011-09-15 86016]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-06-03 23007376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-17 937616]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-17 154864]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-12-07 289496]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2014-09-18 1924328]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-17 410768]
R2 SupportAssistAgent;Dell SupportAssist Agent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [2015-06-11 20648]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-23 43696]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-04-26 279024]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-05-22 6516792]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-02-13 643880]
S3 iumsvc;Intel(R) Update Manager; c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-17 284912]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-05 2004488]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
-----------------EOF-----------------
co našel MBAM skenem hrozeb jsem smazal, zítra pustím úplný sken
Run by Kryštof at 2015-07-29 22:38:46
Microsoft Windows 8.1
System drive C: has 655 GB (69%) free of 943 GB
Total RAM: 8091 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:38:47, on 29. 7. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\trend micro\Kryštof.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... M%3DIESR02
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Run: [SafeQClient] C:\Program Files (x86)\SafeQ\SafeQ_cli.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Data Vault (DellDataVault) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVault.exe
O23 - Service: Dell Data Vault Wizard (DellDataVaultWiz) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Dell Products, LP. - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit (mi-raysat_3dsmax2013_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) - Dell Inc. - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 12820 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 1014322418144
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
dashost.exe {275b0955-5934-464b-9574a8f3881c04b5}
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe"
"C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe"
"C:\Program Files\Dell\DellDataVault\DellDataVault.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\Explorer.EXE
igfxHK.exe
"C:\Windows\system32\igfxEM.exe" -Embedding
/QuitInfo:00000000000009C8;0000000000000E4C;
/loadhooks /Parent:0000000000001068
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX5
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE"
"C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE" C:\Users\Kryštof
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files\Dell\SupportAssist\imstrayicon.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 8b94f5ac-c824-497e-b827-91bdd285b5d3 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\wbem\WmiApSrv.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
/QuitInfo:000000000000094C;0000000000000E00;
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Kryštof\Desktop\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-07 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-07 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-12-07 7506136]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"RtHDVBg_PushButton"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-30 36352]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-06-03 1571696]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-02-11 7825720]
"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2013-08-23 3760456]
"ISCT Tray"=c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-04-24 5860656]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"AdobeBridge"= []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ADSK DLMSession"=C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [2014-02-05 1627032]
"SafeQClient"=C:\Program Files (x86)\SafeQ\SafeQ_cli.exe [2014-08-22 493056]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-07-29 22:35:37 ----D---- C:\rsit
2015-07-28 11:23:18 ----D---- C:\Device
2015-07-28 10:36:06 ----A---- C:\Windows\system32\appraiser.dll
2015-07-21 18:16:29 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 18:16:29 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 18:16:29 ----A---- C:\Windows\system32\atmlib.dll
2015-07-21 18:16:29 ----A---- C:\Windows\system32\atmfd.dll
2015-07-16 23:48:34 ----SHD---- C:\Config.Msi
2015-07-15 23:43:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\generaltel.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-15 23:43:30 ----A---- C:\Windows\system32\aeinv.dll
2015-07-15 23:43:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-15 23:43:29 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-15 23:43:29 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\shell32.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\profsvc.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-15 23:43:29 ----A---- C:\Windows\system32\aepdu.dll
2015-07-15 23:43:26 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-15 23:43:23 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-15 23:43:22 ----AC---- C:\Windows\system32\drivers\bthport.sys
2015-07-15 23:43:22 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-15 23:43:22 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 23:43:22 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43:20 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\WSShared.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\msi.dll
2015-07-15 23:43:20 ----A---- C:\Windows\system32\authui.dll
2015-07-15 23:43:19 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 23:43:19 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 23:43:19 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-15 23:43:19 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-15 23:43:18 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\kerberos.dll
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-15 23:43:18 ----A---- C:\Windows\system32\certcli.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-15 23:43:17 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-15 23:43:13 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wudriver.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wucltux.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuapp.exe
2015-07-15 23:43:13 ----A---- C:\Windows\system32\wuapi.dll
2015-07-15 23:43:13 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-15 23:43:12 ----A---- C:\Windows\system32\wups2.dll
2015-07-15 23:43:12 ----A---- C:\Windows\system32\wups.dll
2015-07-15 23:43:02 ----A---- C:\Windows\system32\wininet.dll
2015-07-15 23:43:02 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-15 23:43:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-15 23:43:00 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\vbscript.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\ieui.dll
2015-07-15 23:43:00 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-15 23:42:59 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-15 23:42:59 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-15 23:42:58 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\webcheck.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\msrating.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\jscript.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\iepeers.dll
2015-07-15 23:42:58 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-15 23:42:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-15 23:42:19 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-15 23:42:17 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 23:42:17 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 23:42:13 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 23:42:13 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 23:42:12 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-15 23:42:10 ----A---- C:\Windows\system32\apphelp.dll
2015-07-15 23:42:06 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-15 23:42:06 ----A---- C:\Windows\system32\msftedit.dll
2015-07-15 23:42:05 ----A---- C:\Windows\system32\jscript9.dll
2015-07-15 23:42:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-15 23:42:02 ----A---- C:\Windows\system32\mshtml.dll
2015-07-15 23:42:00 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-15 23:41:51 ----A---- C:\Windows\system32\ieframe.dll
2015-07-15 23:41:50 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-15 23:41:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-15 23:41:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-15 23:41:48 ----A---- C:\Windows\system32\urlmon.dll
2015-07-15 23:41:48 ----A---- C:\Windows\system32\iertutil.dll
2015-07-15 23:40:51 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-15 23:40:50 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-05 16:30:07 ----D---- C:\Users\Kryštof\AppData\Roaming\Opera Software
2015-07-05 16:28:54 ----D---- C:\Program Files (x86)\Opera
2015-07-05 16:24:01 ----D---- C:\Program Files (x86)\Origin Games
2015-07-05 16:23:23 ----D---- C:\Users\Kryštof\AppData\Roaming\Origin
2015-07-05 16:21:10 ----D---- C:\ProgramData\Electronic Arts
2015-07-05 16:21:08 ----D---- C:\Program Files (x86)\Origin
2015-07-05 16:16:07 ----D---- C:\ProgramData\Origin
2015-07-05 12:27:21 ----D---- C:\Dragon Age Inquisition
======List of files/folders modified in the last 1 month======
2015-07-29 22:38:46 ----D---- C:\Program Files\trend micro
2015-07-29 22:36:32 ----A---- C:\Windows\ntbtlog.txt
2015-07-29 22:36:23 ----D---- C:\Windows\Prefetch
2015-07-29 22:00:00 ----D---- C:\Windows\system32\sru
2015-07-29 21:46:45 ----D---- C:\Windows\Temp
2015-07-29 21:20:37 ----D---- C:\Windows\AppReadiness
2015-07-29 14:27:47 ----D---- C:\Windows\system32\drivers
2015-07-29 14:06:12 ----D---- C:\Windows\system32\catroot
2015-07-29 14:01:16 ----SHD---- C:\Windows\Installer
2015-07-29 13:54:13 ----D---- C:\Program Files (x86)\Dell Backup and Recovery
2015-07-29 13:53:08 ----D---- C:\Windows\system32\config
2015-07-29 13:52:10 ----HD---- C:\Program Files\WindowsApps
2015-07-28 17:28:18 ----RD---- C:\Windows\System32
2015-07-28 17:28:18 ----D---- C:\Windows\Inf
2015-07-28 17:28:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-28 17:20:41 ----D---- C:\ProgramData\NVIDIA
2015-07-28 12:55:55 ----D---- C:\Windows\Microsoft.NET
2015-07-28 12:08:05 ----D---- C:\Windows\WinSxS
2015-07-28 12:07:24 ----D---- C:\ProgramData
2015-07-28 11:14:52 ----D---- C:\Windows\CbsTemp
2015-07-28 11:14:13 ----SHD---- C:\System Volume Information
2015-07-27 14:58:01 ----D---- C:\AdwCleaner
2015-07-27 14:57:59 ----D---- C:\Windows\Tasks
2015-07-27 14:57:58 ----RD---- C:\Program Files (x86)
2015-07-27 14:57:58 ----D---- C:\Program Files\Common Files\System
2015-07-27 14:51:56 ----D---- C:\Windows
2015-07-27 14:49:02 ----D---- C:\Users\Kryštof\AppData\Roaming\vlc
2015-07-26 22:05:16 ----D---- C:\FRST
2015-07-25 11:07:21 ----SD---- C:\Windows\system32\GWX
2015-07-23 18:09:22 ----D---- C:\Windows\system32\NDF
2015-07-21 20:38:43 ----D---- C:\Windows\SysWOW64
2015-07-20 15:38:01 ----A---- C:\IFRToolLog.txt
2015-07-19 14:56:32 ----D---- C:\Program Files (x86)\Steam
2015-07-19 14:35:56 ----D---- C:\Windows\system32\DriverStore
2015-07-18 15:24:05 ----D---- C:\Windows\rescache
2015-07-18 13:33:37 ----D---- C:\Windows\system32\catroot2
2015-07-17 01:29:07 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-17 01:29:07 ----D---- C:\Windows\system32\cs-CZ
2015-07-17 01:29:07 ----D---- C:\Windows\apppatch
2015-07-17 01:29:06 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-17 01:29:05 ----RD---- C:\Windows\ToastData
2015-07-17 01:29:04 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 01:29:04 ----D---- C:\Windows\WinStore
2015-07-17 01:29:04 ----D---- C:\Windows\system32\wbem
2015-07-17 01:29:04 ----D---- C:\Windows\system32\appraiser
2015-07-17 01:29:04 ----D---- C:\Program Files\Internet Explorer
2015-07-17 01:29:04 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-17 00:04:56 ----D---- C:\ProgramData\Microsoft Help
2015-07-16 23:57:39 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-05 17:22:14 ----D---- C:\Windows\system32\Tasks
2015-07-05 16:53:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-05 16:49:19 ----D---- C:\skola
2015-07-05 16:42:25 ----HD---- C:\Windows\system32\GroupPolicy
2015-07-05 16:42:25 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2015-07-05 16:42:13 ----D---- C:\Program Files (x86)\VS Revo Group
2015-07-05 16:41:35 ----D---- C:\Program Files (x86)\Adobe
2015-07-05 16:36:11 ----A---- C:\Windows\win.ini
2015-07-05 16:31:30 ----D---- C:\Program Files (x86)\Apple Software Update
2015-07-05 16:31:23 ----RD---- C:\Users
2015-07-05 16:28:33 ----SD---- C:\ProgramData\Microsoft
2015-07-05 15:04:49 ----D---- C:\Windows\SYSWOW64\directx
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-07-02 13:14:44 ----D---- C:\ZALOHA
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-29 644968]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-06-17 31376]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2012-07-13 22168]
R1 dtsoftbus01;@oem200.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-01 283064]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-09-28 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btmaux;@oem192.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-02-03 140600]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-02-21 1419064]
R3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2015-01-31 23760]
R3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2015-05-22 24240]
R3 DellRbtn;@oem60.inf,%DellRbtn%;Airplane Mode Switch; C:\Windows\System32\drivers\DellRbtn.sys [2013-01-25 10752]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 ibtusb;@oem193.inf,%ibtusb.SVCDESC_IBT%;Aplikace Intel(R) Wireless Bluetooth(R) 4.0 a vysokorychlostní (HS) adaptér; C:\Windows\system32\DRIVERS\ibtusb.sys [2014-04-04 186064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-04-23 3789824]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2014-02-03 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2014-02-03 22728]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2014-04-03 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-12-11 3771352]
R3 IntcDAud;@oem185.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-04-23 450520]
R3 ISCT;@oem1.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\Windows\System32\drivers\ISCTD.sys [2014-02-03 44744]
R3 iwdbus;@oem188.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-26 27032]
R3 MEIx64;@oem61.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverx64.sys [2013-09-04 99288]
R3 NETwNb64;@oem57.inf,___ %NIC_Service_DispName_WINB_64%;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 8.1 64 Bit; C:\Windows\system32\DRIVERS\Netwbw02.sys [2014-03-13 3434464]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-06-17 11011216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-06-03 19600]
R3 nvvad_WaveExtensible;@oem155.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 PCDSRVC{3B54B31B-D06B6431-06020200}_0;PCDSRVC{3B54B31B-D06B6431-06020200}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\dell\supportassist\pcdsrvc_x64.pkms [2015-05-20 25584]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem56.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-07-27 827096]
R3 RTSPER;@oem181.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-10-19 444632]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-03-22 26624]
R3 ST_ACCEL;@oem184.inf,%ST_Accel.SVCDESC%;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2013-08-06 83456]
R3 SynTP;@oem183.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-03-22 523264]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2015-01-24 22704]
S3 intaud_WaveExtensible;@oem187.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-26 38296]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
S3 USBAAPL64;@oem99.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\System32\drivers\usbscan.sys [2014-10-29 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-20 77128]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-02-03 1198456]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-01-13 1161592]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DellDataVault;Dell Data Vault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2015-05-22 2573520]
R2 DellDataVaultWiz;Dell Data Vault Wizard; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [2015-05-22 201936]
R2 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2015-03-16 237448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-17 632048]
R2 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-12-06 1471352]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-30 15720]
R2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2014-04-04 120016]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-04-26 315376]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-04 131544]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-04-24 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 mi-raysat_3dsmax2013_64;mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [2011-09-15 86016]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-06-03 23007376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-17 937616]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-17 154864]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-12-07 289496]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2014-09-18 1924328]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-17 410768]
R2 SupportAssistAgent;Dell SupportAssist Agent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [2015-06-11 20648]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-23 43696]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-04-26 279024]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-05-22 6516792]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-02-13 643880]
S3 iumsvc;Intel(R) Update Manager; c:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-17 284912]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-07-05 2004488]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
-----------------EOF-----------------
co našel MBAM skenem hrozeb jsem smazal, zítra pustím úplný sken
Re: Preventivní kontrola logu
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 30. 7. 2015
Čas skenování: 12:17
Protokol: mbam.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.07.30.02
Databáze rootkitů: v2015.07.29.02
Licence: Premium
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Kryštof
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 914904
Uplynulý čas: 3 hod, 16 min, 19 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 4
PUP.Optional.BestPriceNinja.A, C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage, , [c129955295f536003c5aced553b104fc],
PUP.Optional.BestPriceNinja.A, C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage-journal, , [9f4b7c6b6525ee48ccca5d46c53fcd33],
PUP.Optional.BestPriceNinja.A, C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage, , [698109de0585bb7b3b5b445f15efd22e],
PUP.Optional.BestPriceNinja.A, C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal, , [49a126c1800a3df99ef8881ba163eb15],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 30. 7. 2015
Čas skenování: 12:17
Protokol: mbam.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.07.30.02
Databáze rootkitů: v2015.07.29.02
Licence: Premium
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Kryštof
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 914904
Uplynulý čas: 3 hod, 16 min, 19 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 4
PUP.Optional.BestPriceNinja.A, C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage, , [c129955295f536003c5aced553b104fc],
PUP.Optional.BestPriceNinja.A, C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage-journal, , [9f4b7c6b6525ee48ccca5d46c53fcd33],
PUP.Optional.BestPriceNinja.A, C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage, , [698109de0585bb7b3b5b445f15efd22e],
PUP.Optional.BestPriceNinja.A, C:\Users\Kryštof\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal, , [49a126c1800a3df99ef8881ba163eb15],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Preventivní kontrola logu
Děkuji za pomoc
Přispějete na provoz fóra?