Poprosím o kontrolu logu něco se mi nezdá viz: http://forum.viry.cz//viewtopic.php?f=5&t=146502
Logfile of random's system information tool 1.10 (written by random/random)
Run by pavli at 2015-10-17 17:39:26
Microsoft Windows 10 Home
System drive C: has 115 GB (83%) free of 139 GB
Total RAM: 3001 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:39:38, on 17.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\NIS.exe
C:\Program Files (x86)\Seznam.cz\bin\postak.exe
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\pavli.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\coIEPlg.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\coIEPlg.dll
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files (x86)\Seznam.cz\bin\postak.exe" -s
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Startup: Sidebar283.lnk = C:\Program Files\Windows Sidebar\sidebar.exe
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: O&O Defrag Tray.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @oem2.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\Windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\NIS.exe
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9359 bytes
======Listing Processes======
C:\Windows\system32\lsass.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\BtwRSupportService.exe
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\diMaster.dll" /prefetch:1
"C:\Program Files\OO Software\Defrag\oodag.exe"
C:\Windows\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
"C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\NIS.exe" /c /a /s UserSession2
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\Explorer.EXE
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
"C:\Program Files\OO Software\Defrag\oodtray.exe"
"C:\Program Files (x86)\Seznam.cz\bin\postak.exe" -s
"C:\Program Files (x86)\RocketDock\RocketDock.exe"
"C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{478B41E6-3257-4519-BDA8-E971F9843849}
"C:\Windows\System32\NetworkUXBroker.exe" -ServerName:Windows.Networking.UX
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"fontdrvhost.exe"
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE" -PID 356
"C:\RSIT\RSITx64.exe"
"C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE" -PID 1608
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\pavli\AppData\Roaming\Mozilla\Firefox\Profiles\2p9srdba.default
prefs.js - "browser.startup.homepage" - "chrome://speeddial/content/speeddial.xul"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
C:\Users\pavli\AppData\Roaming\Mozilla\Firefox\Profiles\2p9srdba.default\extensions\
cs@dictionaries.addons.mozilla.org
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.4.24\coIEPlg.dll [2015-09-23 1041208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\coIEPlg.dll [2015-09-23 796472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.4.24\coIEPlg.dll [2015-09-23 1041208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\coIEPlg.dll [2015-09-23 796472]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [2015-10-14 7138816]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2010-11-12 2588968]
"Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2012-02-07 1829768]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2015-09-14 4468984]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Seznam Postak"=C:\Program Files (x86)\Seznam.cz\bin\postak.exe [2012-01-10 491040]
"RocketDock"=C:\Program Files (x86)\RocketDock\RocketDock.exe [2007-09-02 495616]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-09-16 8461224]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [2015-07-12 563416]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2011-09-20 341360]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-07-01 1103440]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
O&O Defrag Tray.lnk - C:\Windows\Installer\{6F9CDC3F-27D8-4A38-B81D-7E2DE3AF8434}\app_icon.ico
C:\Users\pavli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sidebar283.lnk - C:\Program Files\Windows Sidebar\sidebar.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-10-17 17:39:26 ----D---- C:\Program Files\trend micro
2015-10-17 17:38:48 ----D---- C:\RSIT
2015-10-17 16:28:36 ----D---- C:\ProgramData\EgisTec
2015-10-17 16:22:42 ----D---- C:\ProgramData\newsXpresso
2015-10-17 16:22:08 ----D---- C:\Windows\Downloaded Installations
2015-10-17 16:21:24 ----D---- C:\Program Files (x86)\Launch Manager
2015-10-17 16:20:13 ----D---- C:\Program Files (x86)\EgisTec Shredder
2015-10-17 16:19:29 ----A---- C:\Windows\system32\drivers\mwlPSDVDisk.sys
2015-10-17 16:19:29 ----A---- C:\Windows\system32\drivers\mwlPSDNserv.sys
2015-10-17 16:19:29 ----A---- C:\Windows\system32\drivers\mwlPSDFilter.sys
2015-10-17 16:19:06 ----D---- C:\ProgramData\EgisTec IPS
2015-10-17 16:19:06 ----D---- C:\Program Files (x86)\EgisTec IPS
2015-10-17 16:18:43 ----D---- C:\Program Files\EgisTec IPS
2015-10-17 16:18:43 ----D---- C:\Program Files (x86)\EgisTec MyWinLocker
2015-10-17 16:18:00 ----D---- C:\Program Files (x86)\EgisTec MyWinLockerSuite
2015-10-17 13:12:21 ----N---- C:\Windows\SYSWOW64\agrsmdel.exe
2015-10-17 13:12:21 ----N---- C:\Windows\SYSWOW64\agrscoin.dll
2015-10-17 12:12:05 ----A---- C:\Windows\SYSWOW64\PolarClock3.scr
2015-10-17 12:12:03 ----D---- C:\Windows\SYSWOW64\PolarClock3 dir
2015-10-17 12:09:53 ----A---- C:\Windows\SYSWOW64\NeonClockUninstall.exe
2015-10-17 11:09:55 ----D---- C:\Program Files\Microsoft Silverlight
2015-10-17 11:09:55 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-10-17 10:11:48 ----D---- C:\Users\pavli\AppData\Roaming\HD Tune Pro
2015-10-17 10:01:19 ----D---- C:\Windows\Options
2015-10-17 10:01:19 ----D---- C:\Program Files (x86)\Atheros
2015-10-17 10:01:19 ----A---- C:\Windows\system32\drivers\athrx.sys
2015-10-17 10:01:19 ----A---- C:\Windows\system32\athrx.sys
2015-10-17 09:59:58 ----D---- C:\temp
2015-10-17 09:59:54 ----D---- C:\ProgramData\Atheros
2015-10-16 14:25:57 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-10-16 14:25:27 ----D---- C:\ProgramData\Malwarebytes
2015-10-16 14:25:27 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-16 14:25:27 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-10-16 14:25:27 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-10-16 14:25:27 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-10-16 14:16:35 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-10-15 20:46:08 ----D---- C:\Users\pavli\AppData\Roaming\Macromedia
2015-10-15 19:56:19 ----D---- C:\Program Files (x86)\Adobe
2015-10-15 19:55:46 ----D---- C:\ProgramData\Adobe
2015-10-15 19:52:47 ----D---- C:\Program Files (x86)\Microsoft Works
2015-10-15 19:52:28 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2015-10-15 19:52:14 ----D---- C:\Windows\PCHEALTH
2015-10-15 19:49:50 ----D---- C:\Program Files\Microsoft Office
2015-10-15 19:48:45 ----D---- C:\Program Files (x86)\Microsoft Office
2015-10-15 19:48:33 ----RHD---- C:\MSOCache
2015-10-15 19:34:05 ----D---- C:\ProgramData\Microsoft Help
2015-10-15 19:22:11 ----D---- C:\Users\pavli\AppData\Roaming\vlc
2015-10-15 19:21:57 ----D---- C:\Users\pavli\AppData\Roaming\AIMP3
2015-10-15 19:21:42 ----D---- C:\Program Files (x86)\AIMP3
2015-10-15 19:20:53 ----D---- C:\Program Files (x86)\VideoLAN
2015-10-15 18:45:52 ----D---- C:\Program Files (x86)\totalcmd
2015-10-15 18:40:46 ----D---- C:\Odpojení USB
2015-10-15 18:29:02 ----D---- C:\ProgramData\Drivers For Free
2015-10-15 18:27:58 ----D---- C:\ProgramData\UAB
2015-10-15 18:27:51 ----D---- C:\Users\pavli\AppData\Roaming\Drivers For Free
2015-10-15 18:12:48 ----D---- C:\Windows\SYSWOW64\Atheros_L1e
2015-10-15 18:11:35 ----A---- C:\Windows\system32\drivers\l1c51x64.sys
2015-10-15 17:25:01 ----D---- C:\Program Files\CCleaner
2015-10-15 16:54:41 ----D---- C:\Program Files (x86)\RocketDock
2015-10-15 16:31:36 ----A---- C:\Windows\oodjobd.INI
2015-10-15 16:28:54 ----D---- C:\Windows\system32\oodag
2015-10-15 16:28:52 ----D---- C:\Program Files\OO Software
2015-10-15 16:28:27 ----D---- C:\ProgramData\OO Software
2015-10-15 16:19:38 ----D---- C:\Users\pavli\AppData\Roaming\Zoner
2015-10-15 16:19:25 ----D---- C:\ProgramData\Zoner
2015-10-15 16:18:47 ----D---- C:\Program Files\Zoner
2015-10-15 16:16:07 ----D---- C:\Users\pavli\AppData\Roaming\GHISLER
2015-10-15 16:13:38 ----D---- C:\Program Files (x86)\Seznam.cz
2015-10-15 15:21:02 ----A---- C:\Windows\system32\drivers\SYMEVENT64x86.SYS
2015-10-15 15:21:00 ----D---- C:\Program Files\Common Files\Symantec Shared
2015-10-15 15:18:12 ----D---- C:\Windows\system32\drivers\NISx64
2015-10-15 15:18:06 ----D---- C:\Program Files (x86)\Norton Internet Security
2015-10-15 15:13:08 ----D---- C:\Program Files (x86)\NortonInstaller
2015-10-15 14:29:45 ----D---- C:\Windows\system32\drivers\NSx64
2015-10-15 14:29:40 ----D---- C:\ProgramData\Norton
2015-10-15 14:29:28 ----D---- C:\ProgramData\NortonInstaller
2015-10-15 14:19:16 ----D---- C:\Users\pavli\AppData\Roaming\Mozilla
2015-10-15 14:19:07 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-15 14:18:44 ----D---- C:\Users\pavli\AppData\Roaming\WinRAR
2015-10-15 14:17:55 ----D---- C:\Program Files\WinRAR
2015-10-14 21:59:04 ----N---- C:\Windows\system32\MpSigStub.exe
2015-10-14 21:55:12 ----D---- C:\Windows\system32\MRT
2015-10-14 21:55:05 ----A---- C:\Windows\system32\MRT.exe
2015-10-14 21:53:30 ----A---- C:\Windows\SYSWOW64\windows.storage.dll
2015-10-14 21:53:29 ----A---- C:\Windows\system32\BingMaps.dll
2015-10-14 21:53:28 ----A---- C:\Windows\system32\windows.storage.dll
2015-10-14 21:53:24 ----A---- C:\Windows\system32\mos.dll
2015-10-14 21:53:23 ----A---- C:\Windows\SYSWOW64\mos.dll
2015-10-14 21:53:22 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2015-10-14 21:53:21 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2015-10-14 21:53:20 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2015-10-14 21:53:19 ----A---- C:\Windows\system32\mfcore.dll
2015-10-14 21:53:18 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-10-14 21:53:17 ----A---- C:\Windows\system32\MFMediaEngine.dll
2015-10-14 21:53:16 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2015-10-14 21:53:16 ----A---- C:\Windows\system32\Windows.Media.dll
2015-10-14 21:53:16 ----A---- C:\Windows\system32\CoreUIComponents.dll
2015-10-14 21:53:15 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2015-10-14 21:53:15 ----A---- C:\Windows\system32\wininet.dll
2015-10-14 21:53:14 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2015-10-14 21:53:13 ----A---- C:\Windows\SYSWOW64\Windows.UI.Logon.dll
2015-10-14 21:53:13 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2015-10-14 21:53:12 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-10-14 21:53:12 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-10-14 21:53:11 ----A---- C:\Windows\system32\wlansvc.dll
2015-10-14 21:53:11 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-10-14 21:53:10 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-10-14 21:53:10 ----A---- C:\Windows\system32\winmde.dll
2015-10-14 21:53:10 ----A---- C:\Windows\system32\LicenseManager.dll
2015-10-14 21:53:09 ----A---- C:\Windows\system32\wlidsvc.dll
2015-10-14 21:53:09 ----A---- C:\Windows\system32\Windows.UI.Shell.dll
2015-10-14 21:53:09 ----A---- C:\Windows\system32\RemoteNaturalLanguage.dll
2015-10-14 21:53:08 ----A---- C:\Windows\SYSWOW64\LicenseManager.dll
2015-10-14 21:53:08 ----A---- C:\Windows\system32\UIAutomationCore.dll
2015-10-14 21:53:08 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2015-10-14 21:53:07 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2015-10-14 21:53:07 ----A---- C:\Windows\system32\wwansvc.dll
2015-10-14 21:53:07 ----A---- C:\Windows\system32\CoreMessaging.dll
2015-10-14 21:53:06 ----A---- C:\Windows\SYSWOW64\Windows.Media.Speech.dll
2015-10-14 21:53:06 ----A---- C:\Windows\SYSWOW64\usoapi.dll
2015-10-14 21:53:06 ----A---- C:\Windows\SYSWOW64\RemoteNaturalLanguage.dll
2015-10-14 21:53:06 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-10-14 21:53:06 ----A---- C:\Windows\system32\twinapi.appcore.dll
2015-10-14 21:53:05 ----A---- C:\Windows\system32\wuaueng.dll
2015-10-14 21:53:05 ----A---- C:\Windows\system32\mfsvr.dll
2015-10-14 21:53:05 ----A---- C:\Windows\system32\esent.dll
2015-10-14 21:53:04 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2015-10-14 21:53:04 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2015-10-14 21:53:04 ----A---- C:\Windows\system32\RDXService.dll
2015-10-14 21:53:04 ----A---- C:\Windows\system32\modernexecserver.dll
2015-10-14 21:53:04 ----A---- C:\Windows\system32\MBMediaManager.dll
2015-10-14 21:53:03 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-10-14 21:53:03 ----A---- C:\Windows\system32\wpx.dll
2015-10-14 21:53:03 ----A---- C:\Windows\system32\Windows.Media.Speech.dll
2015-10-14 21:53:02 ----A---- C:\Windows\SYSWOW64\mfds.dll
2015-10-14 21:53:02 ----A---- C:\Windows\system32\wmpmde.dll
2015-10-14 21:53:02 ----A---- C:\Windows\system32\mfds.dll
2015-10-14 21:53:02 ----A---- C:\Windows\system32\MapControlCore.dll
2015-10-14 21:53:02 ----A---- C:\Windows\system32\hevcdecoder.dll
2015-10-14 21:53:01 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2015-10-14 21:53:01 ----A---- C:\Windows\system32\WWanAPI.dll
2015-10-14 21:53:01 ----A---- C:\Windows\system32\SharedStartModel.dll
2015-10-14 21:53:01 ----A---- C:\Windows\system32\MbaeApi.dll
2015-10-14 21:53:01 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-10-14 21:53:01 ----A---- C:\Windows\system32\directmanipulation.dll
2015-10-14 21:53:01 ----A---- C:\Windows\system32\bisrv.dll
2015-10-14 21:53:00 ----A---- C:\Windows\SYSWOW64\winmde.dll
2015-10-14 21:53:00 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-10-14 21:53:00 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2015-10-14 21:53:00 ----A---- C:\Windows\system32\VEEventDispatcher.dll
2015-10-14 21:53:00 ----A---- C:\Windows\system32\NotificationController.dll
2015-10-14 21:53:00 ----A---- C:\Windows\system32\ngcsvc.dll
2015-10-14 21:53:00 ----A---- C:\Windows\system32\CredProvDataModel.dll
2015-10-14 21:52:59 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2015-10-14 21:52:59 ----A---- C:\Windows\SYSWOW64\esent.dll
2015-10-14 21:52:59 ----A---- C:\Windows\SYSWOW64\directmanipulation.dll
2015-10-14 21:52:59 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-10-14 21:52:59 ----A---- C:\Windows\system32\wcmsvc.dll
2015-10-14 21:52:59 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-10-14 21:52:59 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2015-10-14 21:52:58 ----A---- C:\Windows\SYSWOW64\VEEventDispatcher.dll
2015-10-14 21:52:58 ----A---- C:\Windows\SYSWOW64\MbaeApi.dll
2015-10-14 21:52:58 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2015-10-14 21:52:58 ----A---- C:\Windows\SYSWOW64\CredProvDataModel.dll
2015-10-14 21:52:58 ----A---- C:\Windows\system32\Windows.UI.dll
2015-10-14 21:52:58 ----A---- C:\Windows\system32\tileobjserver.dll
2015-10-14 21:52:58 ----A---- C:\Windows\system32\LockAppBroker.dll
2015-10-14 21:52:58 ----A---- C:\Windows\system32\audiosrv.dll
2015-10-14 21:52:57 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2015-10-14 21:52:57 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2015-10-14 21:52:57 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2015-10-14 21:52:57 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2015-10-14 21:52:57 ----A---- C:\Windows\SYSWOW64\LockAppBroker.dll
2015-10-14 21:52:57 ----A---- C:\Windows\system32\SettingSyncHost.exe
2015-10-14 21:52:57 ----A---- C:\Windows\system32\SensorsApi.dll
2015-10-14 21:52:57 ----A---- C:\Windows\system32\PsmServiceExtHost.dll
2015-10-14 21:52:57 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-10-14 21:52:56 ----A---- C:\Windows\system32\workfolderssvc.dll
2015-10-14 21:52:56 ----A---- C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-14 21:52:56 ----A---- C:\Windows\system32\OneDriveSettingSyncProvider.dll
2015-10-14 21:52:56 ----A---- C:\Windows\system32\ncsi.dll
2015-10-14 21:52:56 ----A---- C:\Windows\system32\KnobsCsp.dll
2015-10-14 21:52:56 ----A---- C:\Windows\system32\KnobsCore.dll
2015-10-14 21:52:56 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2015-10-14 21:52:56 ----A---- C:\Windows\system32\drivers\fastfat.sys
2015-10-14 21:52:56 ----A---- C:\Windows\system32\drivers\dxgmms2.sys
2015-10-14 21:52:56 ----A---- C:\Windows\system32\dmenrollengine.dll
2015-10-14 21:52:55 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-14 21:52:55 ----A---- C:\Windows\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-10-14 21:52:55 ----A---- C:\Windows\SYSWOW64\hevcdecoder.dll
2015-10-14 21:52:55 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2015-10-14 21:52:55 ----A---- C:\Windows\system32\provengine.dll
2015-10-14 21:52:55 ----A---- C:\Windows\system32\mf.dll
2015-10-14 21:52:55 ----A---- C:\Windows\system32\JpMapControl.dll
2015-10-14 21:52:55 ----A---- C:\Windows\system32\CellularAPI.dll
2015-10-14 21:52:55 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2015-10-14 21:52:54 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-10-14 21:52:54 ----A---- C:\Windows\system32\wwanconn.dll
2015-10-14 21:52:54 ----A---- C:\Windows\system32\wuuhext.dll
2015-10-14 21:52:54 ----A---- C:\Windows\system32\WUDFx02000.dll
2015-10-14 21:52:54 ----A---- C:\Windows\system32\wcmcsp.dll
2015-10-14 21:52:54 ----A---- C:\Windows\system32\psmsrv.dll
2015-10-14 21:52:54 ----A---- C:\Windows\system32\ngccredprov.dll
2015-10-14 21:52:54 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-10-14 21:52:53 ----A---- C:\Windows\system32\VEStoreEventHandlers.dll
2015-10-14 21:52:53 ----A---- C:\Windows\system32\tetheringservice.dll
2015-10-14 21:52:53 ----A---- C:\Windows\system32\SubscriptionMgr.dll
2015-10-14 21:52:53 ----A---- C:\Windows\system32\pnidui.dll
2015-10-14 21:52:53 ----A---- C:\Windows\system32\MapsStore.dll
2015-10-14 21:52:53 ----A---- C:\Windows\system32\cloudAP.dll
2015-10-14 21:52:52 ----A---- C:\Windows\system32\StoreAgent.dll
2015-10-14 21:52:52 ----A---- C:\Windows\system32\omadmclient.exe
2015-10-14 21:52:52 ----A---- C:\Windows\system32\ncryptprov.dll
2015-10-14 21:52:52 ----A---- C:\Windows\system32\mfps.dll
2015-10-14 21:52:52 ----A---- C:\Windows\system32\drivers\pdc.sys
2015-10-14 21:52:51 ----A---- C:\Windows\SYSWOW64\remoteaudioendpoint.dll
2015-10-14 21:52:51 ----A---- C:\Windows\SYSWOW64\ncryptprov.dll
2015-10-14 21:52:51 ----A---- C:\Windows\system32\wwanmm.dll
2015-10-14 21:52:51 ----A---- C:\Windows\system32\remoteaudioendpoint.dll
2015-10-14 21:52:51 ----A---- C:\Windows\system32\MDMAppInstaller.exe
2015-10-14 21:52:51 ----A---- C:\Windows\system32\LocationWiFiAdapter.dll
2015-10-14 21:52:51 ----A---- C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-14 21:52:51 ----A---- C:\Windows\system32\HttpsDataSource.dll
2015-10-14 21:52:51 ----A---- C:\Windows\system32\drivers\portcls.sys
2015-10-14 21:52:51 ----A---- C:\Windows\system32\drivers\buttonconverter.sys
2015-10-14 21:52:50 ----A---- C:\Windows\system32\Windows.Speech.Pal.dll
2015-10-14 21:52:50 ----A---- C:\Windows\system32\omadmapi.dll
2015-10-14 21:52:50 ----A---- C:\Windows\system32\ngckeyenum.dll
2015-10-14 21:52:50 ----A---- C:\Windows\system32\MapConfiguration.dll
2015-10-14 21:52:50 ----A---- C:\Windows\system32\DeviceEnroller.exe
2015-10-14 21:52:49 ----A---- C:\Windows\SYSWOW64\Windows.Speech.Pal.dll
2015-10-14 21:52:49 ----A---- C:\Windows\system32\syncutil.dll
2015-10-14 21:52:49 ----A---- C:\Windows\system32\LocationGeofences.dll
2015-10-14 21:52:49 ----A---- C:\Windows\system32\LicenseManagerShellext.exe
2015-10-14 21:52:49 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-10-14 21:52:48 ----A---- C:\Windows\system32\wwancfg.dll
2015-10-14 21:52:48 ----A---- C:\Windows\system32\LocationWebproxy.dll
2015-10-14 21:52:47 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-10-14 21:52:47 ----A---- C:\Windows\system32\wpnapps.dll
2015-10-14 21:52:47 ----A---- C:\Windows\system32\Windows.Internal.Management.dll
2015-10-14 21:52:47 ----A---- C:\Windows\system32\Windows.Internal.Bluetooth.dll
2015-10-14 21:52:47 ----A---- C:\Windows\system32\netcenter.dll
2015-10-14 21:52:47 ----A---- C:\Windows\system32\LocationFramework.dll
2015-10-14 21:52:47 ----A---- C:\Windows\system32\enterprisecsps.dll
2015-10-14 21:52:47 ----A---- C:\Windows\system32\drivers\sdbus.sys
2015-10-14 21:52:47 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-10-14 21:52:47 ----A---- C:\Windows\system32\DataSenseHandlers.dll
2015-10-14 21:52:47 ----A---- C:\Windows\system32\AudioEng.dll
2015-10-14 21:52:46 ----A---- C:\Windows\SYSWOW64\Windows.Internal.Management.dll
2015-10-14 21:52:46 ----A---- C:\Windows\system32\LocationPeIP.dll
2015-10-14 21:52:46 ----A---- C:\Windows\system32\LocationCrowdsource.dll
2015-10-14 21:52:46 ----A---- C:\Windows\system32\accountaccessor.dll
2015-10-14 21:52:45 ----A---- C:\Windows\SYSWOW64\mdmregistration.dll
2015-10-14 21:52:45 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2015-10-14 21:52:45 ----A---- C:\Windows\system32\MPSSVC.dll
2015-10-14 21:52:45 ----A---- C:\Windows\system32\enrollmentapi.dll
2015-10-14 21:52:44 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2015-10-14 21:52:44 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2015-10-14 21:52:44 ----A---- C:\Windows\system32\provops.dll
2015-10-14 21:52:44 ----A---- C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-14 21:52:43 ----A---- C:\Windows\system32\nlasvc.dll
2015-10-14 21:52:41 ----A---- C:\Windows\system32\mdmregistration.dll
2015-10-14 21:52:41 ----A---- C:\Windows\system32\mdmmigrator.dll
2015-10-14 21:52:41 ----A---- C:\Windows\system32\LocationPeWiFi.dll
2015-10-14 21:52:41 ----A---- C:\Windows\system32\dmcsps.dll
2015-10-14 21:52:41 ----A---- C:\Windows\system32\dmcertinst.exe
2015-10-14 21:52:40 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-14 21:52:40 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-14 21:52:40 ----A---- C:\Windows\system32\syncmlhook.dll
2015-10-14 21:52:40 ----A---- C:\Windows\system32\provisioningcsp.dll
2015-10-14 21:52:40 ----A---- C:\Windows\system32\LocationPeCell.dll
2015-10-14 21:52:40 ----A---- C:\Windows\system32\configmanager2.dll
2015-10-14 21:51:47 ----A---- C:\Windows\system32\mshtml.dll
2015-10-14 21:51:46 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-10-14 21:51:45 ----A---- C:\Windows\system32\edgehtml.dll
2015-10-14 21:51:43 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2015-10-14 21:51:41 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2015-10-14 21:51:40 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-10-14 21:51:36 ----A---- C:\Windows\system32\shell32.dll
2015-10-14 21:51:34 ----A---- C:\Windows\system32\ieframe.dll
2015-10-14 21:51:28 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-10-14 21:51:26 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-10-14 21:51:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-10-14 21:51:23 ----A---- C:\Windows\system32\jscript9.dll
2015-10-14 21:51:23 ----A---- C:\Windows\system32\Chakra.dll
2015-10-14 21:51:19 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2015-10-14 21:51:18 ----A---- C:\Windows\system32\msxml6.dll
2015-10-14 21:51:13 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-10-14 21:51:09 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-10-14 21:51:09 ----A---- C:\Windows\system32\win32kfull.sys
2015-10-14 21:51:07 ----A---- C:\Windows\system32\UserDataService.dll
2015-10-14 21:51:06 ----A---- C:\Windows\system32\Unistore.dll
2015-10-14 21:51:05 ----A---- C:\Windows\system32\wifinetworkmanager.dll
2015-10-14 21:51:04 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-10-14 21:51:04 ----A---- C:\Windows\system32\TokenBroker.dll
2015-10-14 21:51:04 ----A---- C:\Windows\system32\msxml3.dll
2015-10-14 21:51:04 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2015-10-14 21:51:03 ----A---- C:\Windows\SYSWOW64\Unistore.dll
2015-10-14 21:51:03 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2015-10-14 21:51:02 ----A---- C:\Windows\system32\ContactApis.dll
2015-10-14 21:51:01 ----A---- C:\Windows\SYSWOW64\TokenBroker.dll
2015-10-14 21:51:01 ----A---- C:\Windows\system32\kerberos.dll
2015-10-14 21:51:01 ----A---- C:\Windows\system32\jscript.dll
2015-10-14 21:51:00 ----A---- C:\Windows\SYSWOW64\ContactApis.dll
2015-10-14 21:51:00 ----A---- C:\Windows\system32\winload.exe
2015-10-14 21:50:58 ----A---- C:\Windows\SYSWOW64\AppointmentApis.dll
2015-10-14 21:50:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-10-14 21:50:57 ----A---- C:\Windows\system32\win32kbase.sys
2015-10-14 21:50:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-10-14 21:50:56 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-10-14 21:50:56 ----A---- C:\Windows\SYSWOW64\ChatApis.dll
2015-10-14 21:50:56 ----A---- C:\Windows\system32\ChatApis.dll
2015-10-14 21:50:55 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-14 21:50:55 ----A---- C:\Windows\SYSWOW64\EmailApis.dll
2015-10-14 21:50:55 ----A---- C:\Windows\system32\winresume.exe
2015-10-14 21:50:55 ----A---- C:\Windows\system32\vbscript.dll
2015-10-14 21:50:55 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-10-14 21:50:54 ----A---- C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 21:50:53 ----A---- C:\Windows\SYSWOW64\MessagingDataModel2.dll
2015-10-14 21:50:53 ----A---- C:\Windows\system32\winlogon.exe
2015-10-14 21:50:53 ----A---- C:\Windows\system32\PimIndexMaintenance.dll
2015-10-14 21:50:52 ----A---- C:\Windows\system32\EmailApis.dll
2015-10-14 21:50:49 ----A---- C:\Windows\SYSWOW64\UserDataAccountApis.dll
2015-10-14 21:50:49 ----A---- C:\Windows\system32\MessagingDataModel2.dll
2015-10-14 21:50:49 ----A---- C:\Windows\system32\AppointmentApis.dll
2015-10-14 21:50:48 ----A---- C:\Windows\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-14 21:50:48 ----A---- C:\Windows\system32\fveapi.dll
2015-10-14 21:50:48 ----A---- C:\Windows\system32\acmigration.dll
2015-10-14 21:50:45 ----A---- C:\Windows\system32\CallHistoryClient.dll
2015-10-14 21:50:43 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2015-10-14 21:50:43 ----A---- C:\Windows\SYSWOW64\CallHistoryClient.dll
2015-10-14 21:50:43 ----A---- C:\Windows\system32\UserDataAccountApis.dll
2015-10-14 21:50:43 ----A---- C:\Windows\system32\PhoneCallHistoryApis.dll
2015-10-14 21:50:43 ----A---- C:\Windows\system32\Chakradiag.dll
2015-10-14 21:36:04 ----D---- C:\Acer
2015-10-14 21:31:51 ----D---- C:\Windows\SYSWOW64\sda
2015-10-14 21:31:44 ----R---- C:\Windows\system32\drivers\RtsPStor.sys
2015-10-14 21:29:41 ----D---- C:\Windows\OEMTemp
2015-10-14 21:29:21 ----D---- C:\ProgramData\Acer
2015-10-14 21:29:21 ----D---- C:\OEM
2015-10-14 21:28:11 ----D---- C:\Program Files (x86)\Acer
2015-10-14 21:26:54 ----D---- C:\ProgramData\Temp
2015-10-14 21:26:24 ----D---- C:\ProgramData\OEM
2015-10-14 21:26:20 ----D---- C:\Program Files\Acer
2015-10-14 21:24:41 ----D---- C:\Users\pavli\AppData\Roaming\InstallShield
2015-10-14 21:23:51 ----RA---- C:\Windows\SYSWOW64\CSVer.dll
2015-10-14 21:23:50 ----D---- C:\Program Files (x86)\Intel
2015-10-14 21:22:46 ----D---- C:\Intel
2015-10-14 20:57:40 ----D---- C:\Windows\Panther
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RtPCEE4.DAT
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RtPCEE3.DAT
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\rtkhdaud.dat
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RtHdatEx.dat
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RTHDAEQ1.dat
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RTEQEX3.dat
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RTEQEX2.dat
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RTEQEX1.dat
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RTEQEX0.dat
2015-10-14 20:42:18 ----R---- C:\Windows\system32\drivers\RTConvEQ.dat
2015-10-14 20:42:18 ----D---- C:\Program Files\Realtek
2015-10-14 20:41:39 ----D---- C:\Program Files (x86)\Realtek
2015-10-14 20:41:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-10-14 20:41:35 ----HD---- C:\Program Files (x86)\Temp
2015-10-14 20:41:32 ----R---- C:\Windows\RtlExUpd.dll
2015-10-14 20:39:21 ----D---- C:\Program Files\Elantech
2015-10-14 20:39:16 ----A---- C:\Windows\system32\drivers\ETD.sys
2015-10-14 20:38:24 ----D---- C:\Program Files (x86)\Cisco
2015-10-14 20:38:06 ----D---- C:\Windows\SYSWOW64\XPSViewer
2015-10-14 20:37:58 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-10-14 20:37:58 ----D---- C:\Program Files (x86)\MSBuild
2015-10-14 20:37:57 ----D---- C:\Program Files\Reference Assemblies
2015-10-14 20:37:57 ----D---- C:\Program Files\MSBuild
2015-10-14 20:35:53 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2015-10-14 20:35:53 ----A---- C:\Windows\SYSWOW64\PresentationNative_v0300.dll
2015-10-14 20:35:52 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-10-14 20:35:45 ----A---- C:\Windows\system32\TsWpfWrp.exe
2015-10-14 20:35:45 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2015-10-14 20:35:44 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-14 20:32:58 ----A---- C:\Windows\system32\BCMLogon.dll
2015-10-14 20:32:51 ----A---- C:\Windows\SYSWOW64\vcredist_x64.bat
2015-10-14 20:32:51 ----A---- C:\Windows\system32\drivers\npf.sys
2015-10-14 20:32:51 ----A---- C:\Windows\system32\drivers\bcm42rly.sys
2015-10-14 20:32:51 ----A---- C:\Windows\system32\bcmwlrc.dll
2015-10-14 20:32:50 ----A---- C:\Windows\SYSWOW64\vcredist_x64.exe
2015-10-14 20:32:50 ----A---- C:\Windows\system32\wltrynt.dll
2015-10-14 20:32:50 ----A---- C:\Windows\system32\vcredist_x64.exe
2015-10-14 20:32:50 ----A---- C:\Windows\system32\vcredist_x64.bat
2015-10-14 20:32:50 ----A---- C:\Windows\system32\demandService.exe
2015-10-14 20:32:50 ----A---- C:\Windows\system32\bcmttls.dll
2015-10-14 20:32:47 ----D---- C:\Program Files\Broadcom
2015-10-14 20:31:45 ----A---- C:\Windows\system32\drivers\bcmvwl64.sys
2015-10-14 20:20:39 ----D---- C:\Users\pavli\AppData\Roaming\Adobe
2015-10-14 20:19:00 ----SD---- C:\Users\pavli\AppData\Roaming\Microsoft
2015-10-14 20:10:22 ----A---- C:\Windows\SYSWOW64\iglhsip32.dll
2015-10-14 20:10:22 ----A---- C:\Windows\SYSWOW64\iglhcp32.dll
2015-10-14 20:10:22 ----A---- C:\Windows\SYSWOW64\igdumd32.dll
2015-10-14 20:10:22 ----A---- C:\Windows\SYSWOW64\igd10umd32.dll
2015-10-14 20:10:22 ----A---- C:\Windows\system32\iglhsip64.dll
2015-10-14 20:10:22 ----A---- C:\Windows\system32\iglhcp64.dll
2015-10-14 20:10:22 ----A---- C:\Windows\system32\igdumd64.dll
2015-10-14 20:10:22 ----A---- C:\Windows\system32\igd10umd64.dll
2015-10-14 20:10:22 ----A---- C:\Windows\system32\drivers\igdkmd64.sys
2015-10-14 20:10:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-10-14 20:09:47 ----A---- C:\Windows\system32\drivers\btwampfl.sys
2015-10-14 20:09:47 ----A---- C:\Windows\system32\drivers\bcbtums.sys
2015-10-14 20:09:47 ----A---- C:\Windows\system32\BtwRSupportService.exe
2015-10-14 20:09:47 ----A---- C:\Windows\system32\btwdi.dll
2015-10-14 20:09:47 ----A---- C:\Windows\system32\BcmBtRSupport.dll
2015-10-14 20:04:42 ----D---- C:\Windows\SoftwareDistribution
2015-10-14 20:04:02 ----SHD---- C:\ProgramData\Šablony
2015-10-14 20:04:02 ----SHD---- C:\ProgramData\Plocha
2015-10-14 20:04:02 ----SHD---- C:\ProgramData\Nabídka Start
2015-10-14 20:04:02 ----SHD---- C:\ProgramData\Dokumenty
2015-10-14 20:04:02 ----SHD---- C:\ProgramData\Data aplikací
2015-10-14 20:03:28 ----ASH---- C:\hiberfil.sys
2015-10-14 20:01:20 ----SHD---- C:\Recovery
2015-10-14 19:58:54 ----D---- C:\Windows\Prefetch
2015-10-14 19:58:12 ----ASH---- C:\swapfile.sys
2015-10-14 19:58:12 ----ASH---- C:\pagefile.sys
2015-10-14 19:58:10 ----SHD---- C:\System Volume Information
======List of files/folders modified in the last 1 month======
2015-10-17 17:39:26 ----RD---- C:\Program Files
2015-10-17 17:37:04 ----D---- C:\Windows\Temp
2015-10-17 17:37:04 ----D---- C:\Windows\System32
2015-10-17 17:29:01 ----D---- C:\Windows\system32\sru
2015-10-17 16:34:00 ----D---- C:\Windows\INF
2015-10-17 16:33:55 ----D---- C:\Windows
2015-10-17 16:30:29 ----D---- C:\Windows\AppReadiness
2015-10-17 16:28:36 ----HD---- C:\ProgramData
2015-10-17 16:26:17 ----SHD---- C:\Windows\Installer
2015-10-17 16:26:11 ----RD---- C:\Program Files (x86)
2015-10-17 16:20:35 ----D---- C:\Windows\system32\Tasks
2015-10-17 16:19:29 ----D---- C:\Windows\system32\drivers
2015-10-17 16:19:06 ----D---- C:\Program Files (x86)\Common Files
2015-10-17 16:18:49 ----D---- C:\Windows\WinSxS
2015-10-17 13:18:08 ----D---- C:\Windows\system32\CatRoot
2015-10-17 13:18:07 ----D---- C:\Windows\system32\DriverStore
2015-10-17 13:12:21 ----D---- C:\Windows\SysWOW64
2015-10-17 11:10:09 ----SD---- C:\ProgramData\Microsoft
2015-10-17 10:02:42 ----D---- C:\Windows\debug
2015-10-16 18:30:56 ----D---- C:\Windows\Microsoft.NET
2015-10-16 14:47:47 ----A---- C:\Windows\win.ini
2015-10-16 14:47:09 ----HD---- C:\Program Files\WindowsApps
2015-10-15 21:14:08 ----SHD---- C:\$Recycle.Bin
2015-10-15 21:07:54 ----D---- C:\Windows\system32\config
2015-10-15 21:05:11 ----RSD---- C:\Windows\assembly
2015-10-15 21:03:43 ----RSD---- C:\Windows\Fonts
2015-10-15 20:59:32 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-15 19:59:04 ----D---- C:\Windows\Tasks
2015-10-15 19:52:14 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-10-15 19:49:27 ----D---- C:\Windows\ShellNew
2015-10-15 18:28:18 ----SD---- C:\Program Files\Windows Sidebar
2015-10-15 18:28:13 ----SD---- C:\Program Files (x86)\Windows Sidebar
2015-10-15 16:02:48 ----HD---- C:\Windows\ELAMBKUP
2015-10-15 16:00:02 ----D---- C:\Windows\SYSWOW64\en-US
2015-10-15 15:21:00 ----D---- C:\Program Files\Common Files
2015-10-15 14:13:41 ----D---- C:\Windows\Logs
2015-10-15 14:13:38 ----D---- C:\Windows\appcompat
2015-10-15 14:13:21 ----D---- C:\Windows\system32\WDI
2015-10-14 22:08:24 ----D---- C:\Windows\system32\Boot
2015-10-14 22:08:24 ----D---- C:\Windows\system32\appraiser
2015-10-14 22:08:20 ----D---- C:\Windows\system32\CodeIntegrity
2015-10-14 22:08:20 ----D---- C:\Windows\AppPatch
2015-10-14 22:08:17 ----SD---- C:\Windows\SYSWOW64\F12
2015-10-14 22:08:17 ----D---- C:\Windows\SYSWOW64\migration
2015-10-14 22:08:10 ----SD---- C:\Windows\system32\F12
2015-10-14 22:08:10 ----D---- C:\Windows\system32\WinBioPlugIns
2015-10-14 22:08:10 ----D---- C:\Windows\system32\SystemResetPlatform
2015-10-14 22:08:10 ----D---- C:\Windows\system32\migration
2015-10-14 22:08:08 ----RD---- C:\Windows\PurchaseDialog
2015-10-14 22:08:08 ----D---- C:\Windows\Provisioning
2015-10-14 22:08:07 ----D---- C:\Windows\L2Schemas
2015-10-14 21:59:04 ----D---- C:\Windows\CbsTemp
2015-10-14 21:54:10 ----D---- C:\Windows\system32\WinBioDatabase
2015-10-14 21:48:21 ----D---- C:\Windows\system32\catroot2
2015-10-14 21:20:38 ----D---- C:\Windows\system32\restore
2015-10-14 20:38:35 ----RD---- C:\Users
2015-10-14 20:38:16 ----D---- C:\Windows\system32\zh-TW
2015-10-14 20:38:16 ----D---- C:\Windows\system32\zh-HK
2015-10-14 20:38:16 ----D---- C:\Windows\system32\zh-CN
2015-10-14 20:38:16 ----D---- C:\Windows\system32\tr-TR
2015-10-14 20:38:16 ----D---- C:\Windows\system32\th-TH
2015-10-14 20:38:16 ----D---- C:\Windows\system32\sv-SE
2015-10-14 20:38:16 ----D---- C:\Windows\system32\sl-SI
2015-10-14 20:38:16 ----D---- C:\Windows\system32\sk-SK
2015-10-14 20:38:16 ----D---- C:\Windows\system32\ru-RU
2015-10-14 20:38:16 ----D---- C:\Windows\system32\ro-RO
2015-10-14 20:38:16 ----D---- C:\Windows\system32\pt-PT
2015-10-14 20:38:16 ----D---- C:\Windows\system32\pt-BR
2015-10-14 20:38:16 ----D---- C:\Windows\system32\pl-PL
2015-10-14 20:38:16 ----D---- C:\Windows\system32\nl-NL
2015-10-14 20:38:16 ----D---- C:\Windows\system32\nb-NO
2015-10-14 20:38:16 ----D---- C:\Windows\system32\lv-LV
2015-10-14 20:38:16 ----D---- C:\Windows\system32\lt-LT
2015-10-14 20:38:16 ----D---- C:\Windows\system32\ko-KR
2015-10-14 20:38:16 ----D---- C:\Windows\system32\ja-JP
2015-10-14 20:38:16 ----D---- C:\Windows\system32\it-IT
2015-10-14 20:38:16 ----D---- C:\Windows\system32\hu-HU
2015-10-14 20:38:16 ----D---- C:\Windows\system32\hr-HR
2015-10-14 20:38:16 ----D---- C:\Windows\system32\he-IL
2015-10-14 20:38:16 ----D---- C:\Windows\system32\fr-FR
2015-10-14 20:38:16 ----D---- C:\Windows\system32\fi-FI
2015-10-14 20:38:16 ----D---- C:\Windows\system32\et-EE
2015-10-14 20:38:16 ----D---- C:\Windows\system32\es-ES
2015-10-14 20:38:16 ----D---- C:\Windows\system32\en-US
2015-10-14 20:38:16 ----D---- C:\Windows\system32\el-GR
2015-10-14 20:38:16 ----D---- C:\Windows\system32\de-DE
2015-10-14 20:38:16 ----D---- C:\Windows\system32\da-DK
2015-10-14 20:38:16 ----D---- C:\Windows\system32\cs-CZ
2015-10-14 20:38:16 ----D---- C:\Windows\system32\bg-BG
2015-10-14 20:38:16 ----D---- C:\Windows\system32\ar-SA
2015-10-14 20:38:16 ----D---- C:\Windows\Help
2015-10-14 20:38:06 ----D---- C:\Windows\SYSWOW64\MUI
2015-10-14 20:38:06 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-10-14 20:38:06 ----D---- C:\Windows\system32\MUI
2015-10-14 20:06:49 ----D---- C:\Windows\rescache
2015-10-14 20:04:03 ----D---- C:\Program Files\Windows NT
2015-10-14 20:01:20 ----D---- C:\Windows\system32\Recovery
2015-10-14 20:01:18 ----D---- C:\Windows\system32\Sysprep
2015-10-14 19:59:10 ----D---- C:\Windows\system32\drivers\UMDF
2015-10-02 19:36:41 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 SymEFASI;Symantec Extended File Attributes (SI); C:\Windows\system32\drivers\NISx64\1605040.018\SYMEFASI64.SYS [2015-09-24 1620720]
R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20151008.001\BHDrvx64.sys [2015-10-08 1665608]
R1 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1605040.018\ccSetx64.sys [2015-09-24 173808]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2015-08-20 498512]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20151016.001\IDSvia64.sys [2015-10-14 767216]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2015-10-17 22912]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2015-10-17 20328]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2015-10-17 62584]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1605040.018\SRTSPX64.SYS [2015-09-24 50936]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1605040.018\Ironx64.SYS [2015-09-24 297720]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\NISx64\1605040.018\SYMNETS.SYS [2015-09-24 577768]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 athr;@oem14.inf,%ATHR.Service.DispName%;Atheros Extensible Wireless LAN device driver; C:\Windows\System32\drivers\athrx.sys [2009-07-16 1488384]
R3 bcbtums;@oem2.inf,%BCBTUMS.SvcDesc%;Bluetooth USB LD Filter; C:\Windows\system32\drivers\bcbtums.sys [2015-10-14 170712]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2015-07-10 105984]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2015-07-10 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2015-08-20 155456]
R3 ETD;@oem6.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-11-12 138024]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-10-14 10627744]
R3 L1C;@oem13.inf,%L1c.Service.DispName%;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller; C:\Windows\System32\drivers\l1c51x64.sys [2009-07-27 52224]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20151016.009\ENG64.SYS [2015-05-20 138488]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20151016.009\EX64.SYS [2015-05-20 2146040]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-07-10 167936]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\NISx64\1605040.018\SRTSP64.SYS [2015-09-24 930024]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2015-10-15 111344]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2015-07-10 221184]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2015-07-10 40288]
S0 SymELAM;Symantec ELAM Driver; C:\Windows\system32\drivers\NISx64\1605040.018\SymELAM.sys [2015-09-24 24192]
S3 BcmVWL;@oem5.inf,%BcmVWL.Service.DispName%;Broadcom Virtual Wireless; C:\Windows\System32\drivers\bcmvwl64.sys [2015-10-14 21568]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2015-09-17 929280]
S3 btwampfl;@oem2.inf,%btwampfl.ServiceName%;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2015-10-14 166104]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2015-07-10 116736]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\Windows\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-10-05 64216]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2015-09-10 934752]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2011-05-30 338536]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\Windows\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\Windows\System32\drivers\UcmUcsi.sys [2015-09-10 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\Windows\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\Windows\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\Windows\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\Windows\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\Windows\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\Windows\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\Windows\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\Windows\System32\drivers\usbser.sys [2015-09-10 67072]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-14 82128]
R2 BcmBtRSupport;@oem2.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\Windows\system32\BtwRSupportService.exe [2015-10-14 2255064]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-07-01 353360]
R2 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2012-02-07 871296]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-03-07 2375168]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2012-02-06 255376]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\NIS.exe [2015-09-24 282016]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 OODefragAgent;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2015-09-14 1711352]
R2 RS_Service;Raw Socket Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [2010-01-29 260640]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2011-06-21 173424]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-16 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\lsass.exe [2015-07-10 56344]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2015-09-10 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\Windows\System32\svchost.exe [2015-07-10 39856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu
Zdravim.
Tady jsem to popisoval byl tam problem se spořičem obrazovky. http://forum.viry.cz/viewtopic.php?f=5&t=146502
Už jsem to ale vyřešil přeinstalovaním ovladače. A ty ramky jak jste psal to pc už je starší kousek je použivane na internet žádné hry se na tom nehraji tak snad by to mohlo byt ok. Jinak děkuji za kontrolu.
Tady jsem to popisoval byl tam problem se spořičem obrazovky. http://forum.viry.cz/viewtopic.php?f=5&t=146502
Už jsem to ale vyřešil přeinstalovaním ovladače. A ty ramky jak jste psal to pc už je starší kousek je použivane na internet žádné hry se na tom nehraji tak snad by to mohlo byt ok. Jinak děkuji za kontrolu.
Re: Prosím o kontrolu
To jsem četl, ale ne vždy je výhra mít v PC nejnovější software.matastol píše:Zdravim.
Tady jsem to popisoval byl tam problem se spořičem obrazovky. http://forum.viry.cz/viewtopic.php?f=5&t=146502
To ano, ale stejně je to nahraně.matastol píše:A ty ramky jak jste psal to pc už je starší kousek je použivane na internet žádné hry se na tom nehraji tak snad by to mohlo byt ok.
Není zač amatastol píše:Jinak děkuji za kontrolu.
Přispějete na provoz fóra?