preventivna kontrola

Zpráva

p4to · #1 Příspěvek od **p4to** » 19 zář 2015 19:59

Logfile of random's system information tool 1.10 (written by random/random)
Run by p at 2015-09-19 20:58:08
Microsoft Windows 10 Pro N
System drive C: has 21 GB (28%) free of 72 GB
Total RAM: 8108 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:58:14, on 19.9.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Users\p\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\p.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: 255.255.255.255 broadcasthost
O1 - Hosts: ::1 localhost
O2 - BHO: Microsoft Web Test Recorder 12.0 Helper - {432dd630-7e03-4c97-9d62-b99f52df4fc2} - A:\SOFTWARE\Visual Studio\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O4 - HKCU\..\Run: [uTorrent] "C:\Users\p\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Mozilla Thunderbird.lnk = C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: Send to Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (file missing) (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.samsungsetup.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{de237bc0-2961-4fca-84b0-b260761c3255}: NameServer = 8.8.8.8,192.168.0.1
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000 (c2wts) - Unknown owner - C:\Program Files (x86)\Windows Identity Foundation\v3.5\c2wtshost.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NitroPDFDriverCreatorReadSpool9 (NitroDriverReadSpool9) - Nitro PDF Software - C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe
O23 - Service: NitroUpdateService - Unknown owner - C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\WINDOWS\SysWOW64\NLSSRV32.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: OracleMTSRecoveryService - Oracle Corporation - A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\BIN\omtsreco.exe
O23 - Service: OracleServiceXE - Oracle Corporation - a:\software\oracle\app\oracle\product\11.2.0\server\bin\ORACLE.EXE
O23 - Service: OracleXEClrAgent - Oracle Corporation - A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe
O23 - Service: OracleXETNSListener - Oracle Corporation - A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vmms.exe,-10 (vmms) - Unknown owner - C:\WINDOWS\system32\vmms.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 9247 bytes

======Listing Processes======

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe"
"C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe"
C:\WINDOWS\SysWOW64\NLSSRV32.EXE
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\vmms.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe
a:\software\oracle\app\oracle\product\11.2.0\server\bin\ORACLE.EXE XE
dashost.exe {b7faee58-3792-4df8-a6db4b3ffa9e94d5}
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
ClassicStartMenu.exe -startup
igfxEM.exe
igfxHK.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Users\p\AppData\Roaming\uTorrent\utorrent.exe"
"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe"
taskeng.exe {45168131-C561-4BD3-9F7E-FB58D5F372C8}
"C:\Program Files\Microsoft Office\Office15\MsoSync.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe"
"C:\Windows\System32\msconfig.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "http://www.bing.com/search?q=UMonit64.exe UMonit64"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1672.0.1409039641\1934862991" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4256 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_31/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="1672.2.1260421713\1768423205" --font-cache-shared-handle=2432 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_31/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="1672.3.1197002198\625680039" --font-cache-shared-handle=2452 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_31/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="1672.4.1176204960\1648525561" --font-cache-shared-handle=2904 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_31/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="1672.5.931434084\1446671076" --font-cache-shared-handle=3016 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_31/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="1672.8.1837802454\397170136" --font-cache-shared-handle=5752 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group4 pct:10d stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_31/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="1672.10.1453302440\1147529021" --font-cache-shared-handle=5592 /prefetch:673131151
taskeng.exe {E9B978D8-3185-4382-AC34-6618D57A9C59}
"C:\Users\p\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 628 632 640 8192 636

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-18 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office15\URLREDIR.DLL [2012-10-01 877720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-18 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{432dd630-7e03-4c97-9d62-b99f52df4fc2}]
Microsoft Web Test Recorder 12.0 Helper - A:\SOFTWARE\Visual Studio\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05 71520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2012-10-01 704664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2015-05-16 164112]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-07-18 396688]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-06-03 3944136]
"UMonit"=C:\WINDOWS\SysWOW64\UMonit64.exe []
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-08-27 2634872]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\p\AppData\Roaming\uTorrent\utorrent.exe [2015-02-22 416168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-08-27 2634872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

C:\Users\p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mozilla Thunderbird.lnk - C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-19 20:58:08 ----D---- C:\rsit
2015-09-19 20:58:08 ----D---- C:\Program Files\trend micro
2015-09-19 20:51:00 ----D---- C:\WINDOWS\LastGood
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\nvapi64.dll
2015-09-19 20:46:02 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2015-09-19 20:33:12 ----D---- C:\WINDOWS\SYSWOW64\directx
2015-09-17 18:58:27 ----D---- C:\Program Files (x86)\Maxima-sbcl-5.37.1
2015-09-17 17:28:58 ----A---- C:\WINDOWS\ntbtlog.txt
2015-09-16 17:15:19 ----D---- C:\WINDOWS\AutoKMS
2015-09-16 17:09:53 ----D---- C:\xpressmp
2015-09-14 20:32:06 ----D---- C:\Program Files\Microsoft Mathematics
2015-09-08 23:08:56 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-09-08 23:08:55 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-09-08 23:08:54 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-09-08 23:08:53 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-09-08 23:08:52 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-08 23:08:51 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-08 23:08:50 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-08 23:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-08 23:08:50 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-09-08 23:08:50 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-08 23:08:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-08 23:08:49 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-08 23:08:48 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-09-08 23:08:48 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-08 23:08:48 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-08 23:08:48 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-08 23:08:47 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-08 23:08:47 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-08 23:08:47 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-08 23:08:47 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-08 23:08:47 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-08 23:08:47 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-08 23:08:47 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-09-08 23:08:46 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-08 23:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-08 23:08:46 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-08 23:08:46 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-08 23:08:46 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-08 23:08:46 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-08 23:08:46 ----A---- C:\WINDOWS\system32\drivers\vmswitch.sys
2015-09-08 23:08:46 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-08 23:08:45 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-08 23:08:45 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-06 17:13:27 ----D---- C:\WINDOWS\Minidump
2015-09-05 23:45:33 ----D---- C:\Users\p\AppData\Roaming\GHISLER
2015-08-29 19:54:23 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-29 19:54:16 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-29 19:54:10 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 19:54:08 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-29 19:54:05 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-29 19:54:04 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-29 19:54:04 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-29 19:54:02 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-29 19:54:00 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-29 19:54:00 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-29 19:54:00 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-29 19:54:00 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-29 19:54:00 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-29 19:53:59 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-08-29 19:53:59 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-08-29 19:53:59 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-29 19:53:59 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-29 19:53:57 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-29 19:53:57 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-29 19:53:56 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-08-29 19:53:56 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2015-08-29 19:53:55 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-29 19:53:55 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-08-29 19:53:55 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-29 19:53:54 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-08-29 19:53:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-08-29 19:53:54 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-08-29 19:53:54 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-08-29 19:53:54 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-08-29 19:53:54 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-29 19:53:54 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-08-29 19:53:53 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-08-29 19:53:53 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-08-29 19:53:53 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-08-29 19:53:53 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-08-29 19:53:52 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-08-29 19:53:52 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-08-29 19:53:52 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-08-29 19:53:52 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-29 19:53:52 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-29 19:53:52 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-26 23:09:24 ----A---- C:\WINDOWS\system32\drivers\androidusb.sys
2015-08-26 22:08:43 ----D---- C:\Program Files (x86)\Lenovo
2015-08-26 22:06:06 ----D---- C:\Program Files (x86)\PdaNet for Android
2015-08-26 22:06:06 ----A---- C:\WINDOWS\system32\drivers\pneteth.sys
2015-08-26 19:30:33 ----D---- C:\Users\p\AppData\Roaming\Lenovo
2015-08-26 16:06:38 ----D---- C:\Program Files (x86)\LenovoUsbDriver
2015-08-25 12:33:16 ----D---- C:\Users\p\AppData\Roaming\Deadpool
2015-08-25 12:24:06 ----A---- C:\WINDOWS\system32\drivers\TeeDriverW8x64.sys
2015-08-24 21:17:25 ----D---- C:\Users\p\AppData\Roaming\TeamViewer
2015-08-21 22:33:41 ----D---- C:\Users\p\AppData\Roaming\uplay
2015-08-20 17:50:02 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-20 17:49:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-08-20 17:49:54 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-08-20 17:49:54 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-08-20 17:49:54 ----A---- C:\WINDOWS\explorer.exe
2015-08-20 17:49:53 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-08-20 17:49:53 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-08-20 17:49:53 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-08-20 17:49:52 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-20 17:49:52 ----A---- C:\WINDOWS\system32\vmms.exe
2015-08-20 17:49:51 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-08-20 17:49:51 ----A---- C:\WINDOWS\system32\InputService.dll
2015-08-20 17:49:50 ----A---- C:\WINDOWS\system32\tquery.dll
2015-08-20 17:49:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-08-20 17:49:49 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-08-20 17:49:49 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-08-20 17:49:48 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-08-20 17:49:48 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-08-20 17:49:48 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-08-20 17:49:48 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-20 17:49:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-08-20 17:49:46 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-08-20 17:49:46 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-08-20 17:49:46 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-08-20 17:49:46 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-20 17:49:46 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-08-20 17:49:46 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-20 17:49:46 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-08-20 17:49:45 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-08-20 17:49:45 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-08-20 17:49:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-20 17:49:45 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-20 17:49:45 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-08-20 17:49:44 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-08-20 17:49:44 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-20 17:49:44 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-08-20 17:49:44 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-08-20 17:49:44 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-08-20 17:49:44 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-08-20 17:49:44 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-08-20 17:49:44 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-08-20 17:49:43 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-08-20 17:49:43 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-20 17:49:43 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-08-20 17:49:41 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-08-20 17:49:41 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-08-20 17:49:41 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-20 17:49:41 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-08-20 17:49:41 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-08-20 17:49:40 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-08-20 17:49:40 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-08-20 17:49:40 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-20 17:49:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-08-20 17:49:39 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-08-20 17:49:39 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-08-20 17:49:39 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-20 17:49:39 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-08-20 17:49:39 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-08-20 17:49:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-20 17:49:38 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-08-20 17:49:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

======List of files/folders modified in the last 1 month======

2015-09-19 20:58:08 ----RD---- C:\Program Files
2015-09-19 20:58:08 ----D---- C:\Users\p\AppData\Roaming\uTorrent
2015-09-19 20:56:01 ----D---- C:\WINDOWS\System32
2015-09-19 20:56:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-19 20:56:00 ----D---- C:\WINDOWS\INF
2015-09-19 20:53:21 ----D---- C:\WINDOWS\Prefetch
2015-09-19 20:52:27 ----D---- C:\WINDOWS\system32\Tasks
2015-09-19 20:51:44 ----D---- C:\ProgramData\NVIDIA
2015-09-19 20:51:38 ----D---- C:\WINDOWS\SysWOW64
2015-09-19 20:51:25 ----D---- C:\WINDOWS\Temp
2015-09-19 20:51:06 ----D---- C:\WINDOWS\system32\drivers
2015-09-19 20:51:00 ----AD---- C:\Windows
2015-09-19 20:50:45 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-19 20:49:39 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-19 20:47:34 ----D---- C:\WINDOWS\system32\sru
2015-09-19 20:46:25 ----D---- C:\Program Files\NVIDIA Corporation
2015-09-19 20:46:25 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-09-19 20:46:24 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-19 20:36:30 ----D---- C:\WINDOWS\LiveKernelReports
2015-09-19 20:33:47 ----SHD---- C:\WINDOWS\Installer
2015-09-19 20:33:47 ----SHD---- C:\Config.Msi
2015-09-19 20:00:56 ----D---- C:\WINDOWS\AppReadiness
2015-09-19 17:13:39 ----D---- C:\Users\p\AppData\Roaming\AIMP3
2015-09-19 17:13:03 ----D---- C:\WINDOWS\system32\config
2015-09-19 17:11:54 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-18 16:52:30 ----RD---- C:\Program Files (x86)
2015-09-18 16:52:29 ----D---- C:\WINDOWS\Tasks
2015-09-16 17:09:53 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-09-14 20:32:07 ----D---- C:\WINDOWS\Logs
2015-09-14 20:31:41 ----D---- C:\WINDOWS\WinSxS
2015-09-12 21:21:07 ----D---- C:\Program Files (x86)\Common Files
2015-09-12 18:24:53 ----RD---- C:\WINDOWS\assembly
2015-09-12 00:07:58 ----D---- C:\WINDOWS\system32\appraiser
2015-09-12 00:07:57 ----D---- C:\WINDOWS\AppPatch
2015-09-12 00:07:57 ----D---- C:\Program Files\Windows Journal
2015-09-11 15:23:39 ----D---- C:\WINDOWS\system32\MRT
2015-09-10 15:07:35 ----D---- C:\WINDOWS\CbsTemp
2015-09-10 13:16:05 ----D---- C:\Users\p\AppData\Roaming\Media Player Classic
2015-09-09 21:37:54 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-09 20:59:28 ----D---- C:\WINDOWS\debug
2015-09-08 23:05:08 ----D---- C:\WINDOWS\system32\catroot2
2015-09-05 23:45:55 ----SD---- C:\Users\p\AppData\Roaming\Microsoft
2015-09-05 14:36:20 ----D---- C:\WINDOWS\system32\LogFiles
2015-09-04 20:01:26 ----D---- C:\Users\p\AppData\Roaming\JetBrains
2015-08-31 17:44:11 ----D---- C:\WINDOWS\rescache
2015-08-30 00:17:33 ----D---- C:\WINDOWS\system32\oobe
2015-08-30 00:17:33 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-28 23:42:37 ----D---- C:\WINDOWS\system32\CatRoot
2015-08-26 18:37:02 ----A---- C:\WINDOWS\system32\MRT.exe
2015-08-25 20:38:05 ----A---- C:\WINDOWS\system32\nvinitx.dll
2015-08-25 17:57:35 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-08-25 17:57:34 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2015-08-25 17:57:34 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-08-25 17:57:34 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-08-25 17:57:34 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-08-25 17:57:34 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-08-25 17:57:34 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-08-25 17:57:34 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2015-08-25 17:57:34 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2015-08-25 17:56:55 ----D---- C:\Users\p\AppData\Roaming\Nitro PDF
2015-08-21 23:21:21 ----DC---- C:\WINDOWS\Panther
2015-08-21 22:15:27 ----D---- C:\Users\p\AppData\Roaming\DAEMON Tools Pro
2015-08-21 22:15:27 ----D---- C:\ProgramData\DAEMON Tools Pro
2015-08-21 10:55:16 ----RD---- C:\WINDOWS\DevicesFlow
2015-08-21 10:55:16 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-08-20 20:52:17 ----HD---- C:\Program Files\WindowsApps
2015-08-20 20:50:36 ----AHD---- C:\ProgramData
2015-08-20 20:49:45 ----D---- C:\WINDOWS\system32\drivers\etc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-08-31 40264]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2014-06-04 21184]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2015-08-07 70496]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys [2011-01-24 11576]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 ACPIVPC;@oem26.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-08-07 42328]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 ibtfltcoex;@oem25.inf,%PROVIDER_NAME%;Intel Corporation; C:\WINDOWS\system32\DRIVERS\ibtfltcoex.sys [2015-07-01 79632]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-07-18 6389688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 iwdbus;@oem3.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-03-04 30512]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2015-07-10 129224]
R3 MEIx64;@oem27.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2015-08-25 193336]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-08-31 11188880]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-06-03 42696]
R3 Synth3dVsp;Synth3dVsp; C:\WINDOWS\System32\drivers\synth3dvsp.sys [2015-08-07 101888]
R3 SynTP;@oem16.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-06-03 613576]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 androidusb;@oem34.inf,%androidusb.SvcDesc%;ADB Interface Driver; C:\WINDOWS\System32\Drivers\androidusb.sys [2015-08-26 32768]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-08-20 929280]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 GeneStor;@oem5.inf,%GENESTOR.SvcDesc%;Genesys Logic Storage Driver; C:\WINDOWS\system32\DRIVERS\GeneStor.sys [2015-07-09 115704]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-03-04 42288]
S3 IntcDAud;@oem13.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-03-20 442368]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 lunparser;@%systemroot%\system32\drivers\lunparser.sys,-10010; C:\WINDOWS\system32\drivers\lunparser.sys [2015-08-07 20992]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2015-07-10 3354384]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys []
S3 nvvad_WaveExtensible;@oem15.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-06-17 46768]
S3 passthruparser;@%systemroot%\system32\drivers\passthruparser.sys,-10010; C:\WINDOWS\system32\drivers\passthruparser.sys [2015-08-07 22528]
S3 pneteth;@oem31.inf,%pneteth.Service.DispName%;PdaNet Broadband; C:\WINDOWS\System32\drivers\pneteth.sys [2011-11-25 15360]
S3 pvhdparser;@%systemroot%\system32\drivers\pvhdparser.sys,-10010; C:\WINDOWS\system32\drivers\pvhdparser.sys [2015-08-07 49152]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-07 934752]
S3 SensorsSimulatorDriver;@oem12.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2015-07-10 214016]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-07 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-07-18 351120]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [2014-10-15 22744]
R2 NitroDriverReadSpool9;NitroPDFDriverCreatorReadSpool9; C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe [2014-05-19 230920]
R2 NitroUpdateService;NitroUpdateService; C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe [2014-05-19 417800]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [2014-05-19 69640]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-08-25 937592]
R2 OneSyncSvc_Session1;Sync Host_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 OracleServiceXE;OracleServiceXE; a:\software\oracle\app\oracle\product\11.2.0\server\bin\ORACLE.EXE [2014-05-30 147110912]
R2 OracleXETNSListener;OracleXETNSListener; A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe [2014-05-29 522240]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2014-02-21 134336]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-06-03 249032]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-12 144200]
S2 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2015-08-12 5632]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-07-18 283024]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-12 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 OracleMTSRecoveryService;OracleMTSRecoveryService; A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\BIN\omtsreco.exe [2014-05-29 81408]
S3 OracleXEClrAgent;OracleXEClrAgent; A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe [2014-05-29 83968]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session1;Kontaktné údaje_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-07 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-08-19 838336]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S4 OracleJobSchedulerXE;OracleJobSchedulerXE; a:\software\oracle\app\oracle\product\11.2.0\server\Bin\extjob.exe [2014-05-29 45568]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 20 zář 2015 11:55

Krasny den Vam preju

Pozorujete nejake konkretni problemy ci jde pouze o preventivku?

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Cleaning
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

p4to · #3 Příspěvek od **p4to** » 20 zář 2015 12:03

Dakujem za kontrolu, problem nemam ziadny len nepouzivam AV, tak sem tam si dam pc skontrolovat timto sposobom...

# AdwCleaner v5.008 - Logfile created 20/09/2015 at 12:59:41
# Updated 18/09/2015 by Xplode
# Database : 2015-09-17.3 [Server]
# Operating system : Windows 10 Pro N (x64)
# Username : p - P-PC
# Running from : C:\Users\p\Downloads\adwcleaner_5.008.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

***** [ Files ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21}

***** [ Web browsers ] *****

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [955 bytes] ##########

#4 Příspěvek od **altrok** » 20 zář 2015 12:06

Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=144868

Upozorneni: tento sken zabere od 30 minut po nekolik hodin

p4to · #5 Příspěvek od **p4to** » 20 zář 2015 18:02

tu je log

Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum skenovania: 20.9.2015
Scan �?as: 17:13
Logfile:
Správca: áno

Verzia: 2.1.8.1057
Malware databázy: v2015.09.20.02
Rootkit databázy: v2015.09.18.01
Licencia: Skúšobná verzia
Ochrana pred škodlivým softvérom: Povolené
Škodlivých webových stránok Ochrana: Povolené
Sebaobrany: Telesne

OS: Windows 10
CPU: x64
Systém súborov: NTFS
Používateľ: p

Typ skenu: Prispôsobená kontrola
Výsledok: Dokon�?ené
Objekty naskenované: 668225
Uplynulý �?as: 1 hr, 47 min 34 sekúnd

Pamäť: Povolené
Pri spustení: Povolené
Súborový systém: Povolené
Archív: Povolené
Rootkity: Povolené
Heuristiky: Povolené
ŠTEŇA: Povolené
VYKUROVAC: Povolené

Procesy: 0
(Žiadne zákernej položky neboli zistené)

Moduly: 0
(Žiadne zákernej položky neboli zistené)

Kľú�?e databázy Registry: 0
(Žiadne zákernej položky neboli zistené)

Hodnoty databázy Registry: 0
(Žiadne zákernej položky neboli zistené)

Údaje databázy Registry: 0
(Žiadne zákernej položky neboli zistené)

Prie�?inky: 0
(Žiadne zákernej položky neboli zistené)

Súbory: 1
RiskWare.Tool.CK, A:\SOFTWARE\ReSharper\Resharper.8.x.Keygen – kópia.exe, , [bd65b280692280b65fefd8aba65c14ec],

Fyzický sektory: 0
(Žiadne zákernej položky neboli zistené)

(end)

#6 Příspěvek od **altrok** » 20 zář 2015 19:16

Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

p4to · #7 Příspěvek od **p4to** » 21 zář 2015 18:35

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015
Ran by p (administrator) on P-PC (21-09-2015 19:32:39)
Running from C:\Users\p\Desktop
Loaded Profiles: p (Available Profiles: p)
Platform: Windows 10 Pro N (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Oracle Corporation) A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\bin\oracle.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Nitro PDF Software) C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Oracle Corporation) A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE
(Microsoft Corporation) C:\Windows\System32\vmms.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(BitTorrent, Inc.) C:\Users\p\AppData\Roaming\uTorrent\utorrent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AIMP DevTeam) C:\Program Files (x86)\AIMP3\AIMP3.exe
(forum.viry.cz) C:\Users\p\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [164112 2015-05-16] (IvoSoft)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [396688 2015-07-18] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated)
HKLM\...\Run: [UMonit] => C:\WINDOWS\SysWOW64\UMonit64.exe
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKU\S-1-5-21-959798352-1324109031-3461309740-1000\...\Run: [uTorrent] => C:\Users\p\AppData\Roaming\uTorrent\utorrent.exe [416168 2015-02-22] (BitTorrent, Inc.)
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
Startup: C:\Users\p\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mozilla Thunderbird.lnk [2015-08-22]
ShortcutTarget: Mozilla Thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{97049116-db44-4d0d-a0e2-8f3d6bd9c587}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{de237bc0-2961-4fca-84b0-b260761c3255}: [NameServer] 8.8.8.8,192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\S-1-5-21-959798352-1324109031-3461309740-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-18] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-18] (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 12.0 Helper -> {432dd630-7e03-4c97-9d62-b99f52df4fc2} -> A:\SOFTWARE\Visual Studio\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-18] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2014-05-19] (Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\p\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prekladač Google) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-06-15]
CHR Extension: (Prezentácie Google) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-12]
CHR Extension: (Dokumenty Google) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-12]
CHR Extension: (Disk Google) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-12]
CHR Extension: (Adblock Plus) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-06-15]
CHR Extension: (AdBlocker - Blokovač reklám pre YouTube™) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-06-15]
CHR Extension: (Google Search) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-12]
CHR Extension: (Tabuľky Google) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-12]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
CHR Extension: (AdBlock) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-06-15]
CHR Extension: (The Great Suspender) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2015-08-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-12]
CHR Extension: (Gmail) - C:\Users\p\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2015-08-12] (Microsoft Corporation)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
S2 HvHost; C:\Windows\System32\hvhostsvc.dll [57344 2015-08-07] (Microsoft Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NitroDriverReadSpool9; C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe [230920 2014-05-19] (Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe [417800 2014-05-19] ()
R2 OracleXETNSListener; A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe [522240 2014-05-29] (Oracle Corporation) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-03] (Synaptics Incorporated)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
R2 vmms; C:\Windows\system32\vmms.exe [12911104 2015-08-11] (Microsoft Corporation)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S4 OracleJobSchedulerXE; a:\software\oracle\app\oracle\product\11.2.0\server\Bin\extjob.exe XE [X]
S3 OracleMTSRecoveryService; A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\BIN\omtsreco.exe "OracleMTSRecoveryService" [X]
R2 OracleServiceXE; a:\software\oracle\app\oracle\product\11.2.0\server\bin\ORACLE.EXE XE [X]
S3 OracleXEClrAgent; A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe agent_sid=CLRExtProc max_dispatchers=2 tcp_dispatchers=0 max_task_threads=6 max_sessions=25 ENVS="EXTPROC_DLLS=ONLY:A:\SOFTWARE\Oracle\app\oracle\product\11.2.0\server\bin\oraclr11.dll" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2015-08-26] (Google Inc)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 GeneStor; C:\Windows\system32\DRIVERS\GeneStor.sys [115704 2015-07-09] (GenesysLogic)
R1 hvservice; C:\Windows\System32\drivers\hvservice.sys [70496 2015-08-07] (Microsoft Corporation)
S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [20992 2015-08-07] (Microsoft Corporation)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [193336 2015-08-25] (Intel Corporation)
S3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46768 2015-06-17] (NVIDIA Corporation)
S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [22528 2015-08-07] (Microsoft Corporation)
S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [49152 2015-08-07] (Microsoft Corporation)
S3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
R3 Synth3dVsp; C:\Windows\System32\drivers\synth3dvsp.sys [101888 2015-08-07] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [26112 2015-08-07] (Microsoft Corporation)
R2 VMSP; C:\Windows\System32\drivers\vmswitch.sys [882688 2015-08-27] (Microsoft Corporation)
S3 VMSVSF; C:\Windows\System32\drivers\vmswitch.sys [882688 2015-08-27] (Microsoft Corporation)
S3 VMSVSP; C:\Windows\System32\drivers\vmswitch.sys [882688 2015-08-27] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 WinNat; C:\Windows\System32\drivers\winnat.sys [347648 2015-08-07] (Microsoft Corporation)
S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-21 19:32 - 2015-09-21 19:33 - 00017485 _____ C:\Users\p\Desktop\FRST.txt
2015-09-21 19:31 - 2015-09-21 19:32 - 00000000 ____D C:\FRST
2015-09-21 19:29 - 2015-09-21 19:30 - 00112640 _____ (forum.viry.cz) C:\Users\p\Desktop\FRSTLauncher.exe
2015-09-21 19:29 - 2015-09-21 19:29 - 00112640 _____ (forum.viry.cz) C:\Users\p\Downloads\Nepotvrdené 522748.crdownload
2015-09-21 19:28 - 2015-09-21 19:28 - 02191360 _____ (Farbar) C:\Users\p\Desktop\FRST64.exe
2015-09-21 19:25 - 2015-09-21 19:25 - 00016148 _____ C:\WINDOWS\system32\P-PC_p_HistoryPrediction.bin
2015-09-20 19:04 - 2015-09-20 19:04 - 00001090 _____ C:\WINDOWS\PFRO.log
2015-09-20 13:17 - 2015-09-20 19:06 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-20 13:17 - 2015-09-20 13:17 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-20 13:17 - 2015-09-20 13:17 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-20 13:17 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-20 13:17 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-20 13:17 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-20 13:15 - 2015-09-20 13:16 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\p\Downloads\mbam-setup-2.1.8.1057.exe
2015-09-20 12:58 - 2015-09-20 12:59 - 00000000 ____D C:\AdwCleaner
2015-09-20 12:58 - 2015-09-20 12:58 - 01662976 _____ C:\Users\p\Downloads\adwcleaner_5.008.exe
2015-09-19 20:58 - 2015-09-19 20:58 - 00000000 ____D C:\rsit
2015-09-19 20:58 - 2015-09-19 20:58 - 00000000 ____D C:\Program Files\trend micro
2015-09-19 20:56 - 2015-09-19 20:58 - 01222144 _____ C:\Users\p\Desktop\RSITx64.exe
2015-09-19 20:51 - 2015-09-19 20:51 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-09-19 20:46 - 2015-08-31 00:47 - 00040264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-09-19 20:46 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-19 20:46 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-19 20:36 - 2015-09-19 20:36 - 00000000 ____D C:\Users\p\Documents\WB Games
2015-09-19 20:33 - 2015-09-19 20:33 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-09-19 17:55 - 2015-09-21 19:06 - 00003540 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2015-09-17 19:04 - 2015-09-17 19:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxima 5.37.1 (sbcl)
2015-09-17 18:58 - 2015-09-17 19:04 - 00000000 ____D C:\Program Files (x86)\Maxima-sbcl-5.37.1
2015-09-16 17:15 - 2015-09-17 17:15 - 00000000 ____D C:\WINDOWS\AutoKMS
2015-09-16 17:09 - 2015-09-16 17:09 - 00000000 ____D C:\xpressmp
2015-09-14 20:36 - 2015-09-17 00:43 - 00000173 _____ C:\Users\p\AppData\Local\msmathematics.qat.p
2015-09-14 20:32 - 2015-09-14 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mathematics (64-bit)
2015-09-14 20:32 - 2015-09-14 20:32 - 00000000 ____D C:\Program Files\Microsoft Mathematics
2015-09-12 21:21 - 2015-09-12 21:21 - 00000000 ____D C:\Users\p\AppData\Local\Steam
2015-09-12 21:21 - 2015-09-12 21:21 - 00000000 ____D C:\Users\p\AppData\Local\CEF
2015-09-12 21:21 - 2015-09-12 21:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-10 21:22 - 2015-09-10 22:08 - 00519856 _____ C:\Users\p\Documents\p4tooo.blend
2015-09-10 21:22 - 2015-09-10 21:22 - 00473640 _____ C:\Users\p\Documents\p4tooo.blend1
2015-09-10 20:16 - 2015-09-10 20:16 - 00000218 _____ C:\Users\p\AppData\Local\recently-used.xbel
2015-09-09 21:37 - 2015-09-21 18:45 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-08 23:08 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-08 23:08 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-08 23:08 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-08 23:08 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-08 23:08 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-08 23:08 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-08 23:08 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-08 23:08 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-08 23:08 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-08 23:08 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-08 23:08 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-08 23:08 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-08 23:08 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-08 23:08 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-08 23:08 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-08 23:08 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-08 23:08 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-08 23:08 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-08 23:08 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-08 23:08 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-08 23:08 - 2015-08-27 07:40 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2015-09-08 23:08 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-08 23:08 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-08 23:08 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-08 23:08 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-08 23:08 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-08 23:08 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 23:08 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-08 23:08 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-08 23:08 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-08 23:08 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-08 23:08 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-08 23:08 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-06 17:13 - 2015-09-09 20:55 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-05 23:45 - 2015-09-14 00:17 - 00000000 ____D C:\Users\p\AppData\Roaming\GHISLER
2015-09-04 20:22 - 2015-09-04 20:22 - 00000000 ____D C:\Users\p\AppData\Local\SymbolSourceSymbols
2015-09-04 20:22 - 2015-09-04 20:22 - 00000000 ____D C:\Users\p\AppData\Local\RefSrcSymbols
2015-09-04 17:14 - 2015-09-04 20:22 - 00000000 ____D C:\Users\p\AppData\Local\JetBrains
2015-09-01 22:25 - 2015-09-01 22:25 - 00000000 ____D C:\Users\p\Source
2015-08-31 20:31 - 2015-08-31 20:31 - 00000000 ____D C:\Users\p\AppData\Local\NetworkTiles
2015-08-29 19:54 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-29 19:54 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-29 19:54 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-29 19:54 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-29 19:54 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 19:54 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-29 19:54 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-29 19:54 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-29 19:54 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-29 19:54 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-29 19:54 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-29 19:54 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-29 19:54 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-29 19:53 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-29 19:53 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-29 19:53 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-29 19:53 - 2015-08-20 07:09 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-08-29 19:53 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-29 19:53 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-29 19:53 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-29 19:53 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-29 19:53 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-29 19:53 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-29 19:53 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-29 19:53 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-29 19:53 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-29 19:53 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-29 19:53 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-29 19:53 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-29 19:53 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-29 19:53 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-29 19:53 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-29 19:53 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-29 19:53 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-29 19:53 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-29 19:53 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-29 19:53 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-29 19:53 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-29 19:53 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-29 19:53 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-29 19:53 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-29 19:53 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-26 23:09 - 2015-08-26 23:09 - 00032768 _____ (Google Inc) C:\WINDOWS\system32\Drivers\androidusb.sys
2015-08-26 22:08 - 2015-08-26 22:08 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-08-26 22:06 - 2015-08-26 22:30 - 00000000 ____D C:\Program Files (x86)\PdaNet for Android
2015-08-26 22:06 - 2011-11-25 00:25 - 00015360 _____ (June Fabrics Technology Inc.) C:\WINDOWS\system32\Drivers\pneteth.sys
2015-08-26 19:30 - 2015-08-26 22:20 - 00000000 ____D C:\Users\p\AppData\Roaming\Lenovo
2015-08-26 16:06 - 2015-08-26 22:55 - 00000000 ____D C:\Program Files (x86)\LenovoUsbDriver
2015-08-25 12:50 - 2015-08-25 12:50 - 00000000 ____D C:\Users\p\Documents\My Games
2015-08-25 12:49 - 2015-08-25 12:49 - 00000000 ____D C:\Users\p\AppData\Local\SKIDROW
2015-08-25 12:33 - 2015-08-25 12:33 - 00000000 ____D C:\Users\p\AppData\Roaming\Deadpool
2015-08-25 12:24 - 2015-08-25 12:24 - 00193336 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-08-24 21:17 - 2015-08-24 21:22 - 00000000 ____D C:\Users\p\AppData\Roaming\TeamViewer
2015-08-23 23:53 - 2015-08-23 23:53 - 00000000 ____D C:\Users\p\Documents\My Web Sites
2015-08-23 23:53 - 2015-08-23 23:53 - 00000000 ____D C:\Users\p\Documents\IISExpress

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-21 19:33 - 2015-07-29 21:04 - 00000000 ____D C:\Users\p\AppData\Roaming\uTorrent
2015-09-21 19:23 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-21 18:57 - 2015-07-16 19:39 - 00000954 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-21 18:45 - 2015-08-11 18:07 - 00005200 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for p-PC-p p-PC
2015-09-21 18:21 - 2015-08-07 00:00 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-21 18:21 - 2015-07-16 19:39 - 00000950 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-20 23:47 - 2015-06-12 15:51 - 00000000 ____D C:\Users\p\AppData\Local\ClassicShell
2015-09-20 23:37 - 2015-06-12 17:35 - 00000000 ____D C:\Users\p\AppData\Roaming\AIMP3
2015-09-20 19:09 - 2015-08-07 00:03 - 01089736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-20 19:09 - 2015-06-14 13:49 - 00101618 _____ C:\WINDOWS\system32\perfh01B.dat
2015-09-20 19:09 - 2015-06-14 13:49 - 00032010 _____ C:\WINDOWS\system32\perfc01B.dat
2015-09-20 19:05 - 2015-07-10 14:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-20 19:04 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\IME
2015-09-20 19:04 - 2015-07-10 11:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-09-20 17:42 - 2015-07-01 15:21 - 00000072 _____ C:\Users\Public\LMDebug.log
2015-09-20 11:30 - 2015-06-26 21:12 - 00000000 ____D C:\Users\p\AppData\Roaming\Media Player Classic
2015-09-19 21:20 - 2015-06-17 19:32 - 00000000 ____D C:\Users\p\Documents\Visual Studio 2013
2015-09-19 20:51 - 2015-08-07 00:01 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-19 20:46 - 2015-08-07 00:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-19 20:46 - 2015-08-07 00:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-19 20:46 - 2015-08-07 00:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-19 20:46 - 2015-06-26 20:47 - 00000000 ____D C:\Users\p\AppData\Local\NVIDIA Corporation
2015-09-19 20:46 - 2015-06-12 16:42 - 00000000 ____D C:\Users\p\AppData\Local\NVIDIA
2015-09-19 20:36 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-19 20:00 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-18 16:52 - 2015-06-12 16:33 - 00004012 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-18 16:52 - 2015-06-12 16:33 - 00003780 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 17:09 - 2015-06-18 18:35 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-15 16:34 - 2015-06-12 15:40 - 00000000 ____D C:\Users\p\AppData\Local\Packages
2015-09-12 21:21 - 2015-06-12 16:33 - 00000000 ____D C:\Users\p\AppData\Local\Google
2015-09-12 17:47 - 2015-07-10 14:23 - 00260376 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-12 00:07 - 2015-07-10 17:51 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-12 00:07 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-11 15:23 - 2015-06-12 23:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-11 01:31 - 2015-08-07 00:03 - 00000000 ____D C:\Users\p
2015-09-11 01:18 - 2014-10-26 14:48 - 00137728 ___SH C:\Users\p\Downloads\Thumbs.db
2015-09-10 20:19 - 2015-06-20 17:50 - 00000000 ____D C:\Users\p\AppData\Local\Adobe
2015-09-10 20:13 - 2015-06-20 17:56 - 00000034 _____ C:\Users\p\AppData\Roaming\AdobeWLCMCache.dat
2015-09-10 15:07 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-04 20:01 - 2015-06-16 01:02 - 00000000 ____D C:\Users\p\AppData\Roaming\JetBrains
2015-08-31 17:44 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\rescache
2015-08-31 00:47 - 2015-07-23 04:02 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-30 00:17 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-26 19:30 - 2015-06-16 01:02 - 00000000 ____D C:\Users\p\.android
2015-08-26 18:37 - 2015-06-12 23:10 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-25 20:38 - 2015-07-23 04:02 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-08-25 20:38 - 2015-07-23 04:02 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-25 17:57 - 2015-08-07 00:01 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-25 17:57 - 2015-08-07 00:01 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-25 17:57 - 2015-08-07 00:01 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-25 17:57 - 2015-08-07 00:01 - 01062520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-08-25 17:57 - 2015-08-07 00:01 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-25 17:57 - 2015-08-07 00:01 - 00582448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll
2015-08-25 17:57 - 2015-08-07 00:01 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-25 17:57 - 2015-08-07 00:01 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-08-25 17:57 - 2015-08-07 00:01 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-25 17:56 - 2015-06-19 18:38 - 00000000 ____D C:\Users\p\AppData\Roaming\Nitro PDF
2015-08-25 15:02 - 2015-08-07 00:01 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin

==================== Files in the root of some directories =======

2015-06-20 17:56 - 2015-09-10 20:13 - 0000034 _____ () C:\Users\p\AppData\Roaming\AdobeWLCMCache.dat
2015-09-14 20:36 - 2015-09-17 00:43 - 0000173 _____ () C:\Users\p\AppData\Local\msmathematics.qat.p
2015-09-10 20:16 - 2015-09-10 20:16 - 0000218 _____ () C:\Users\p\AppData\Local\recently-used.xbel
2015-06-19 15:52 - 2015-06-19 15:52 - 0000017 _____ () C:\Users\p\AppData\Local\resmon.resmoncfg
2015-08-07 00:01 - 2015-08-07 00:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-09-20 21:25

==================== End of FRST.txt ============================

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive a: (Data) (Fixed) (Total:861.08 GB) (Free:428.74 GB) NTFS
Drive c: () (Fixed) (Total:70.43 GB) (Free:20.17 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive g: () (Removable) (Total:3.73 GB) (Free:0.91 GB) NTFS

Available physical RAM: 5467.23 MB
Total physical RAM: 8108.36 MB
Percentage of memory in use: 32%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D9FA2484)
Partition 1: (Active) - (Size=70.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=861.1 GB) - (Type=OF Extended)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 3.7 GB) (Disk ID: B7B46830)
Partition 1: (Active) - (Size=3.7 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData:Win32App
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Program Files\Application Verifier:Win32App
AlternateDataStreams: C:\Program Files\IIS:Win32App
AlternateDataStreams: C:\Program Files\IIS Express:Win32App
AlternateDataStreams: C:\Program Files\Microsoft Office:Win32App
AlternateDataStreams: C:\Program Files\Microsoft SQL Server:Win32App
AlternateDataStreams: C:\Program Files\Microsoft SQL Server Compact Edition:Win32App
AlternateDataStreams: C:\Program Files\MPC-HC:Win32App
AlternateDataStreams: C:\Program Files\MSBuild:Win32App
AlternateDataStreams: C:\Program Files\SharePoint Client Components:Win32App
AlternateDataStreams: C:\Program Files\WinRAR:Win32App
AlternateDataStreams: C:\Program Files (x86)\Application Verifier:Win32App
AlternateDataStreams: C:\Program Files (x86)\HTML Help Workshop:Win32App
AlternateDataStreams: C:\Program Files (x86)\IIS Express:Win32App
AlternateDataStreams: C:\Program Files (x86)\Microsoft SDKs:Win32App
AlternateDataStreams: C:\Program Files (x86)\Microsoft Silverlight:Win32App
AlternateDataStreams: C:\Program Files (x86)\Microsoft SQL Server:Win32App
AlternateDataStreams: C:\Program Files (x86)\Microsoft Visual Studio 11.0:Win32App
AlternateDataStreams: C:\Program Files (x86)\Microsoft Web Tools:Win32App
AlternateDataStreams: C:\Program Files (x86)\Microsoft.NET:Win32App
AlternateDataStreams: C:\Program Files (x86)\Mozilla Thunderbird:Win32App
AlternateDataStreams: C:\Program Files (x86)\MSBuild:Win32App
AlternateDataStreams: C:\Program Files (x86)\Smart Defrag 4:Win32App
AlternateDataStreams: C:\Users\All Users:Win32App
AlternateDataStreams: C:\Program Files\Common Files\DESIGNER:Win32App
AlternateDataStreams: C:\Program Files\Common Files\microsoft shared:Win32App
AlternateDataStreams: C:\ProgramData\Application Data:Win32App
AlternateDataStreams: C:\ProgramData\Microsoft:Win32App
AlternateDataStreams: C:\ProgramData\regid.1991-06.com.microsoft:Win32App
AlternateDataStreams: C:\ProgramData\Windows App Certification Kit:Win32App

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\p\Desktop" je 3 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

==================== End Of Log ==============================

#8 Příspěvek od **altrok** » 22 zář 2015 08:35

Doporucuji nainstalovat antivir a zapnout funkci bodu obnoveni. Pak vyprazdnete tempy napr. pomoci CCleaneru. V logu jinak havet nevidim.

Stahnete Crystal Disk Info (CDI) http://sourceforge.jp/frs/redir.php?m=j ... o6_2_2.zip
archiv extrahujte a spustte vyextrahovany soubor DiskInfo.exe
ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
log vlozte do dalsi odpovedi (Ctrl + V)

p4to · #9 Příspěvek od **p4to** » 22 zář 2015 17:35

dal som robit mesacne zalohy, to by malo byt to iste. Kedysi som pouzival KIS ale zda sa mi ze sa mi trochu spolami cely system potom tak nepouzivam ziaden ... Vedel by si mi odporucit daky nenarocny a free ?? diki
----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 10 Professional N [10.0 Build 10240] (x64)
Date : 2015/09/22 17:35:57

-- Controller Map ----------------------------------------------------------
+ Standard SATA AHCI Controller [ATA]
- MATSHITA DVD-RAM UJ8DB
- ST1000LM014-SSHD-8GB
- Microsoft Storage Spaces Controller [SCSI]

-- Disk List ---------------------------------------------------------------
(1) ST1000LM014-SSHD-8GB : 1000,2 GB [0/0/0, pd1] - st

----------------------------------------------------------------------------
(1) ST1000LM014-SSHD-8GB
----------------------------------------------------------------------------
Model : ST1000LM014-SSHD-8GB
Firmware : LVD3
Serial Number : W3816M8J
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Unknown
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 3674 hours
Power On Count : 874 count
Temperature : 28 C (82 F)
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 109 _99 __6 0000017009C0 Read Error Rate
03 _98 _98 __0 000000000000 Spin-Up Time
04 100 100 _20 000000000366 Start/Stop Count
05 100 100 _10 000000000000 Reallocated Sectors Count
07 _80 _60 _30 0001060C2226 Seek Error Rate
09 _96 _96 __0 000000000E5A Power-On Hours
0A 100 100 _97 000000000000 Spin Retry Count
0C 100 100 _20 00000000036A Power Cycle Count
B8 100 100 _99 000000000000 End-to-End Error
BB 100 100 __0 000000000000 Reported Uncorrectable Errors
BC 100 _99 __0 000000000003 Command Timeout
BD 100 100 __0 000000000000 High Fly Writes
BE _72 _52 _45 00001C17001C Airflow Temperature
BF 100 100 __0 000000000000 G-Sense Error Rate
C0 100 100 __0 000000000021 Power-off Retract Count
C1 _99 _99 __0 000000000DF7 Load/Unload Cycle Count
C2 _28 _48 __0 000F0000001C Temperature
C5 100 100 __0 000000000000 Current Pending Sector Count
C6 100 100 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
FE 100 100 __0 000000000000 Free Fall Protection

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5733 3831 364D 384A
020: 0000 0000 0004 4C56 4433 2020 2020 5354 3130 3030
030: 4C4D 3031 342D 5353 4844 2D38 4742 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 8F0E 0006 004C 0040
080: 03F0 001F 346B 7D09 6163 3469 BC09 6163 407F 005F
090: 005F 8080 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5000 C500
110: 72C3 9933 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0108 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0001 0000 0000 7200 8806
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 1081 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 107F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0003 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 FDA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 6D 63 C0 09 70 01 00 00 00 03 03
010: 00 62 62 00 00 00 00 00 00 00 04 32 00 64 64 66
020: 03 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 50 3C 26 22 0C 06 01 00 00 09 32
040: 00 60 60 5A 0E 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 64 64 6A 03 00 00 00
060: 00 00 B8 32 00 64 64 00 00 00 00 00 00 00 BB 32
070: 00 64 64 00 00 00 00 00 00 00 BC 32 00 64 63 03
080: 00 00 00 00 00 00 BD 3A 00 64 64 00 00 00 00 00
090: 00 00 BE 22 00 48 34 1C 00 17 1C 00 00 00 BF 32
0A0: 00 64 64 00 00 00 00 00 00 00 C0 32 00 64 64 21
0B0: 00 00 00 00 00 00 C1 32 00 63 63 F7 0D 00 00 00
0C0: 00 00 C2 22 00 1C 30 1C 00 00 00 0F 00 00 C5 12
0D0: 00 64 64 00 00 00 00 00 00 00 C6 10 00 64 64 00
0E0: 00 00 00 00 00 00 C7 3E 00 C8 C8 00 00 00 00 00
0F0: 00 00 FE 32 00 64 64 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 8B 00 00 73
170: 03 00 01 00 01 C5 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 FB 13 00 00 00 02 02 02 02 02 02 02
190: 02 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 5B D5 EB 54 19 0C 00 00
1B0: 00 00 00 00 01 00 A6 04 AD 8A C5 B9 03 00 00 00
1C0: 5B B9 11 39 06 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 7D 15 00 00 E3 00 14 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2F
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 F8

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B8 63 00 00 00 00 00 00 00 00 00 00 BB 00
070: 00 00 00 00 00 00 00 00 00 00 BC 00 00 00 00 00
080: 00 00 00 00 00 00 BD 00 00 00 00 00 00 00 00 00
090: 00 00 BE 2D 00 00 00 00 00 00 00 00 00 00 BF 00
0A0: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
0B0: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
0C0: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C5 00
0D0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0E0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0F0: 00 00 FE 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 89

#10 Příspěvek od **altrok** » 22 zář 2015 20:24

Z free antiviru mam dobre zkusenosti s avastem, pripadne s o neco horsim, ale nenapadnym Defenderem. Jeste uklidime pouzite nastroje.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

VIRY.CZ

preventivna kontrola

preventivna kontrola

Re: preventivna kontrola

Re: preventivna kontrola

Re: preventivna kontrola

Re: preventivna kontrola

Re: preventivna kontrola

Re: preventivna kontrola

Re: preventivna kontrola

Re: preventivna kontrola

Re: preventivna kontrola