Prosim o kontrolu logu

[Gabriela88]

Prosim o kontrolu logu, obcas sa mi stava, ze po zapnuti PC sa nezobraia ikony na ploche a musim natvrdo vypnut NB a znova spustit. Neviem ci sa jedna o nejaku HW chybu, alebo nejaka havet sa mi do NB dostala.
Dakujem

Logfile of random's system information tool 1.10 (written by random/random)
Run by Gabika at 2015-11-26 18:19:15
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 51 GB (12%) free of 430 GB
Total RAM: 3892 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:19:29, on 2015.11.26.
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Gabika\AppData\Local\DM\TinyDM.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe
C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\SpScreen.exe
C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Gabika.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?typ ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/secur ... =21.6.0.32
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL (file missing)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: ?????????? ???????? - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MuteSync] C:\PROGRA~2\Lenovo\LENOVO~2\MuteSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [MDS_Menu] "c:\Program Files (x86)\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Lenovo\MediaShow" UpdateWithCreateOnce "Software\CyberLink\MediaShow\4.1"
O4 - HKLM\..\Run: [Lenovo SlideNav2] "C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe"
O4 - HKLM\..\Run: [UCam_Menu] "c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [Lenovo SplitScreen] "C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Tiny download manager] "C:\Users\Gabika\AppData\Local\DM\TinyDM.exe" /M
O4 - HKCU\..\Run: [NTRedirect] C:\windows\SysWOW64\rundll32.exe "C:\Users\Gabika\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] C:\windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE /FU "C:\windows\TEMP\E_SF0F4.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - c:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Slidebar Notifier Service - Lenovo - C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13370 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
taskeng.exe {228330A4-DAA2-4502-AEE5-4634DA3A189C}
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe"
C:\windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"
C:\windows\Explorer.EXE
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe" Utility_Window
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Windows\System32\GfxUI.exe" /startup:silent
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Users\Gabika\AppData\Local\DM\TinyDM.exe" /M
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\uTorrent\uTorrent.exe"
"C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe" Default
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\SpScreen.exe"
SpScreen64.exe 0
"C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5788 CREDAT:267521 /prefetch:2
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\sppsvc.exe
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3774073323-2101973133-2395509523-100314_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3774073323-2101973133-2395509523-100314 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524

"C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UT7VYNNO\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-25 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}]
Визуальные закладки

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-03-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v sieti Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-25 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}]
Визуальные закладки

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-03-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-25 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-25 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-03 166424]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-03 391192]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-03 410648]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-01-29 10038304]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-01-29 877600]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-01-07 1894696]
"SynBtnAsst"=C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe [2010-01-07 54568]
"OnekeyStudio"=C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [2009-12-19 776608]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [2010-03-11 4448704]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2010-03-11 7056832]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-01-12 2918656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-01-08 18705664]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2013-01-24 969104]
"Tiny download manager"=C:\Users\Gabika\AppData\Local\DM\TinyDM.exe [2014-08-16 289752]
"NTRedirect"=C:\windows\SysWOW64\rundll32.exe [2009-07-14 44544]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe []
"EPSON Stylus SX400 Series"=C:\windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE [2007-12-17 221696]
"OneDrive"=C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-11-26 548552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-11-20 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-03 98304]
"MuteSync"=C:\PROGRA~2\Lenovo\LENOVO~2\MuteSync.exe [2009-12-28 336384]
"Adobe Reader Speed Launcher"=c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]
"MDS_Menu"=c:\Program Files (x86)\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe [2009-02-25 218408]
"Lenovo SlideNav2"=C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe [2009-12-30 318400]
"UCam_Menu"=c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"YouCam Mirror Tray icon"=c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2010-02-03 167008]
"VeriFaceManager"=C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [2010-04-20 3122528]
"Lenovo SplitScreen"=C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe [2010-01-26 779104]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-03-03 268800]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1"
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-26 18:19:15 ----D---- C:\rsit
2015-11-26 18:19:15 ----D---- C:\Program Files\trend micro
2015-11-26 17:52:04 ----HD---- C:\OneDriveTemp
2015-11-26 17:50:18 ----D---- C:\Program Files (x86)\Microsoft OneDrive
2015-11-26 17:50:00 ----D---- C:\ProgramData\Microsoft OneDrive
2015-11-12 20:07:21 ----A---- C:\windows\system32\win32k.sys
2015-11-11 10:53:15 ----A---- C:\windows\system32\wuaueng.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wups.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wudriver.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuapp.exe
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuapi.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuwebv.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wups2.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wups.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wudriver.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wucltux.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuauclt.exe
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuapp.exe
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuapi.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\WinSetupUI.dll
2015-11-11 10:52:58 ----A---- C:\windows\SYSWOW64\apphelp.dll
2015-11-11 10:52:58 ----A---- C:\windows\system32\apphelp.dll
2015-11-11 10:52:58 ----A---- C:\windows\system32\aelupsvc.dll
2015-11-11 10:52:57 ----A---- C:\windows\SYSWOW64\shimeng.dll
2015-11-11 10:52:57 ----A---- C:\windows\SYSWOW64\sdbinst.exe
2015-11-11 10:52:57 ----A---- C:\windows\system32\shimeng.dll
2015-11-11 10:52:57 ----A---- C:\windows\system32\sdbinst.exe
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2015-11-11 10:51:56 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-11-11 10:51:56 ----A---- C:\windows\system32\ieetwcollector.exe
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\occache.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\iernonce.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\ie4uinit.exe
2015-11-11 10:51:54 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-11-11 10:51:54 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-11-11 10:51:53 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-11-11 10:51:52 ----A---- C:\windows\SYSWOW64\iesetup.dll
2015-11-11 10:51:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-11-11 10:51:52 ----A---- C:\windows\system32\occache.dll
2015-11-11 10:51:52 ----A---- C:\windows\system32\iedkcs32.dll
2015-11-11 10:51:51 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-11-11 10:51:51 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-11-11 10:51:51 ----A---- C:\windows\system32\urlmon.dll
2015-11-11 10:51:51 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\iernonce.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-11-11 10:51:50 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-11-11 10:51:50 ----A---- C:\windows\system32\msfeeds.dll
2015-11-11 10:51:50 ----A---- C:\windows\system32\dxtrans.dll
2015-11-11 10:51:49 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-11-11 10:51:48 ----A---- C:\windows\system32\iesetup.dll
2015-11-11 10:51:48 ----A---- C:\windows\system32\ieapfltr.dll
2015-11-11 10:51:47 ----A---- C:\windows\system32\iertutil.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\webcheck.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-11-11 10:51:46 ----A---- C:\windows\system32\vbscript.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-11-11 10:51:45 ----A---- C:\windows\system32\jsproxy.dll
2015-11-11 10:51:44 ----A---- C:\windows\system32\dxtmsft.dll
2015-11-11 10:51:43 ----A---- C:\windows\system32\ieui.dll
2015-11-11 10:51:43 ----A---- C:\windows\system32\ieframe.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\mshtmled.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\ieUnatt.exe
2015-11-11 10:51:41 ----A---- C:\windows\system32\webcheck.dll
2015-11-11 10:51:41 ----A---- C:\windows\system32\jscript9diag.dll
2015-11-11 10:51:41 ----A---- C:\windows\system32\jscript.dll
2015-11-11 10:51:40 ----A---- C:\windows\system32\wininet.dll
2015-11-11 10:51:40 ----A---- C:\windows\system32\jscript9.dll
2015-11-11 10:51:39 ----A---- C:\windows\system32\msrating.dll
2015-11-11 10:51:39 ----A---- C:\windows\system32\MshtmlDac.dll
2015-11-11 10:51:37 ----A---- C:\windows\system32\mshtml.dll
2015-11-11 10:48:15 ----A---- C:\windows\system32\ntoskrnl.exe
2015-11-11 10:48:14 ----A---- C:\windows\system32\schannel.dll
2015-11-11 10:48:14 ----A---- C:\windows\system32\kerberos.dll
2015-11-11 10:48:13 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-11-11 10:48:13 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-11-11 10:48:12 ----A---- C:\windows\system32\ncrypt.dll
2015-11-11 10:48:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-11-11 10:48:12 ----A---- C:\windows\system32\drivers\cng.sys
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2015-11-11 10:48:10 ----A---- C:\windows\system32\kernel32.dll
2015-11-11 10:48:10 ----A---- C:\windows\system32\bcryptprimitives.dll
2015-11-11 10:48:09 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-11-11 10:48:09 ----A---- C:\windows\system32\ntdll.dll
2015-11-11 10:48:09 ----A---- C:\windows\system32\lsasrv.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\wow64.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\rpcrt4.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\KernelBase.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-11-11 10:48:08 ----A---- C:\windows\system32\conhost.exe
2015-11-11 10:48:07 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2015-11-11 10:48:07 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\winsrv.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\wdigest.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\TSpkg.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\sspicli.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\srcore.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\smss.exe
2015-11-11 10:48:07 ----A---- C:\windows\system32\rstrui.exe
2015-11-11 10:48:07 ----A---- C:\windows\system32\msv1_0.dll
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\setup16.exe
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\auditpol.exe
2015-11-11 10:48:06 ----A---- C:\windows\system32\srclient.dll
2015-11-11 10:48:06 ----A---- C:\windows\system32\lsass.exe
2015-11-11 10:48:06 ----A---- C:\windows\system32\auditpol.exe
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\secur32.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\credssp.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\wow64win.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\wow64cpu.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\sspisrv.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\secur32.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\ntvdm64.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\csrsrv.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\cryptbase.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\credssp.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\wow32.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\sspicli.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 10:48:02 ----A---- C:\windows\SYSWOW64\instnm.exe
2015-11-11 10:48:02 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2015-11-11 10:48:02 ----A---- C:\windows\system32\apisetschema.dll
2015-11-11 10:48:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\user.exe
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\msobjs.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\msobjs.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\msaudite.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\adtschema.dll
2015-11-11 10:46:54 ----A---- C:\windows\system32\drivers\tdx.sys
2015-11-11 10:46:54 ----A---- C:\windows\system32\drivers\afd.sys
2015-11-11 10:46:47 ----A---- C:\windows\system32\drivers\ndis.sys
2015-11-11 10:46:27 ----A---- C:\windows\SYSWOW64\InkEd.dll
2015-11-11 10:46:27 ----A---- C:\windows\system32\InkEd.dll
2015-11-11 10:46:26 ----A---- C:\windows\system32\jnwmon.dll

======List of files/folders modified in the last 1 month======

2015-11-26 18:19:29 ----D---- C:\windows\Prefetch
2015-11-26 18:19:18 ----D---- C:\windows\Temp
2015-11-26 18:19:15 ----RD---- C:\Program Files
2015-11-26 18:16:33 ----D---- C:\Users\Gabika\AppData\Roaming\uTorrent
2015-11-26 17:50:18 ----RD---- C:\Program Files (x86)
2015-11-26 17:50:00 ----HD---- C:\ProgramData
2015-11-26 17:40:50 ----D---- C:\ProgramData\VeriFace
2015-11-26 17:40:39 ----D---- C:\windows\system32\config
2015-11-26 17:40:09 ----A---- C:\windows\SYSWOW64\log.txt
2015-11-26 17:37:24 ----SHD---- C:\System Volume Information
2015-11-26 17:36:44 ----D---- C:\windows\system32\catroot
2015-11-26 17:36:10 ----D---- C:\windows\system32\drivers
2015-11-26 17:35:51 ----D---- C:\Program Files\Common Files
2015-11-26 17:35:50 ----D---- C:\windows\system32\Tasks
2015-11-26 17:12:54 ----D---- C:\ProgramData\CyberLink
2015-11-25 19:19:22 ----D---- C:\Program Files (x86)\uTorrent
2015-11-21 22:02:21 ----D---- C:\Users\Gabika\AppData\Roaming\vlc
2015-11-21 13:06:57 ----D---- C:\Users\Gabika\AppData\Roaming\Skype
2015-11-21 12:29:10 ----D---- C:\windows\System32
2015-11-21 12:29:10 ----D---- C:\windows\inf
2015-11-21 12:29:10 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-11-14 13:09:06 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-13 12:09:29 ----D---- C:\windows\rescache
2015-11-13 09:29:02 ----D---- C:\windows\winsxs
2015-11-12 19:31:14 ----D---- C:\windows\SYSWOW64\sk-SK
2015-11-12 19:31:13 ----D---- C:\windows\SysWOW64
2015-11-12 19:31:13 ----D---- C:\windows\system32\sk-SK
2015-11-12 19:31:11 ----D---- C:\Program Files\Internet Explorer
2015-11-12 19:31:10 ----D---- C:\windows\SYSWOW64\en-US
2015-11-12 19:31:07 ----D---- C:\windows\system32\en-US
2015-11-12 19:30:51 ----D---- C:\windows\AppPatch
2015-11-12 19:30:45 ----D---- C:\windows\system32\migration
2015-11-11 23:40:18 ----D---- C:\windows\system32\MRT
2015-11-11 23:37:53 ----D---- C:\windows\Microsoft.NET
2015-11-11 23:35:34 ----RSD---- C:\windows\assembly
2015-11-11 23:33:09 ----A---- C:\windows\system32\MRT.exe
2015-11-11 23:30:46 ----SHD---- C:\windows\Installer
2015-11-11 23:21:22 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2015-11-11 23:19:30 ----D---- C:\Program Files\Windows Journal
2015-11-11 10:45:25 ----D---- C:\windows\system32\catroot2
2015-11-11 10:20:37 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2015-10-31 16:15:45 ----D---- C:\windows\Minidump
2015-10-31 16:15:41 ----D---- C:\Windows

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-11-20 537112]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2010-01-15 39008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 141264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 170640]
R2 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2010-12-21 170640]
R2 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 50624]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2009-10-19 28176]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atipmdag.sys [2010-03-03 6177280]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-03-03 156160]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2009-11-06 1550848]
R3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btusbflt;Bluetooth USB Filter; C:\windows\system32\drivers\btusbflt.sys [2009-12-14 53800]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-15 98344]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2010-01-15 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-15 21288]
R3 Epfwndis;Eset Personal Firewall; C:\windows\system32\DRIVERS\Epfwndis.sys [2010-12-21 34144]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2010-01-29 2260256]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2010-03-03 7843040]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2010-01-20 157296]
R3 JmUsbCcgp;JMicron USB Composite Device Lower Filter Driver; C:\windows\system32\DRIVERS\jmccgp.sys [2010-02-05 17904]
R3 JmUsbVideo;JMicron 31x Upper Filter Driver; C:\windows\System32\Drivers\jmcam.sys [2010-02-05 56688]
R3 JmUsbVideo2;JMicron 31x Lower Filter Driver; C:\windows\System32\Drivers\jmcam_lo.sys [2010-02-05 31088]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTHDMIAzAudService;Service for HDMI; C:\windows\system32\drivers\RtHDMIVX.sys [2010-01-27 231328]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-01-07 302128]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11280]
S1 avmqggza;avmqggza; \??\C:\windows\system32\drivers\avmqggza.sys []
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-16 79376]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2010-03-03 7843040]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 VClone;VClone; C:\windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 151656]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-21 121840]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-03-03 202752]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2010-01-12 873248]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-01-12 810144]
R2 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE [2007-12-17 163840]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE [2007-01-11 126464]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-20 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 Slidebar Notifier Service;Slidebar Notifier Service; C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe [2009-12-30 69568]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe []
S2 ReadyComm.DirectRouter;ReadyComm.DirectRouter; C:\windows\System32\IgrsSvcs.exe -k IgrsSvcs []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11 269000]
S3 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-11 30312]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2011-01-12 42360]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-01 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-10-31 114688]
S3 IGRS;IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [2009-07-15 38152]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [2009-08-14 509192]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [2009-11-17 575304]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-11-24 29263712]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PS_MDP;ReadyComm Presentation Space Helper Service; C:\windows\System32\IgrsSvcs.exe -k IgrsSvcs []
S3 RichVideo;Cyberlink RichVideo Service(CRVS); c:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe [2009-10-29 244904]
S3 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2013-01-27 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[Gabriela88]

All processes killed
========== FILES ==========
File/Folder C:\Windows\SYSWOW64\shoDFC0.tmp not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User

User: Gabika
->Temp folder emptied: 8972161 bytes
->Temporary Internet Files folder emptied: 195503966 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 14415 bytes
->Google Chrome cache emptied: 449894394 bytes
->Flash cache emptied: 139012 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 17464394 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 56268 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 42330743 bytes
RecycleBin emptied: 1647466 bytes

Total Files Cleaned = 683,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Gabika
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 11262015_182950

Files moved on Reboot...
C:\Users\Gabika\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\TVSWJKCJ\context[2].htm moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SIJOPAT0\afr[1].htm moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SIJOPAT0\afr[2].htm moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SIJOPAT0\viewtopic[2].htm moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\L8OFNLSI\context[1].htm moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\4A72F430-B40C-4D36-A068-CE33ADA5ADF9.dat moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[Gabriela88]

# AdwCleaner v5.022 - Logfile created 26/11/2015 at 18:41:54
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Gabika - GABIKA-PC
# Running from : C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BXKHKAY1\adwcleaner_5.022.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\Delta
[-] Folder Deleted : C:\ProgramData\Babylon
[-] Folder Deleted : C:\Users\Gabika\AppData\Local\onlysearch
[-] Folder Deleted : C:\Users\Gabika\AppData\Local\28577
[-] Folder Deleted : C:\Users\Gabika\AppData\Roaming\Systweak
[-] Folder Deleted : C:\Users\Gabika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
[-] Folder Deleted : C:\Users\Gabika\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\staged\yasearch@yandex.ru
[-] Folder Deleted : C:\Users\Gabika\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\staged\vb@yandex.ru
[#] Folder Deleted : C:\windows\SysNative\Tasks\BitGuard

***** [ Files ] *****

[-] File Deleted : C:\Users\Gabika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
[-] File Deleted : C:\Users\Gabika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : BitGuard
[-] Task Deleted : EPUpdater

***** [ Registry ] *****

[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NTRedirect]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
[-] Key Deleted : HKLM\SOFTWARE\Classes\d
[-] Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Tiny download manager]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\MediaPlayer\ShimInclusionList\browser.exe
[-] Key Deleted : HKCU\Software\86d6dde534ef44
[-] Key Deleted : HKLM\SOFTWARE\86d6dde534ef44
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99E29823-2F67-41C3-8AA5-6425097A771F}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21FA44EF-376D-4D53-9B0F-8A89D3229068}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{21FA44EF-376D-4D53-9B0F-8A89D3229068}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
[-] Key Deleted : HKCU\Software\DataMngr
[-] Key Deleted : HKCU\Software\DataMngr_Toolbar
[-] Key Deleted : HKCU\Software\Delta
[-] Key Deleted : HKCU\Software\filescout
[-] Key Deleted : HKCU\Software\SweetIM
[-] Key Deleted : HKCU\Software\systweak
[-] Key Deleted : HKCU\Software\tinydm.com
[-] Key Deleted : HKLM\SOFTWARE\DataMngr
[-] Key Deleted : HKLM\SOFTWARE\Delta
[-] Key Deleted : HKLM\SOFTWARE\SweetIM
[-] Key Deleted : HKLM\SOFTWARE\webssearchesSoftware
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\inethnfd
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TinyDM
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\inethnfd
[!] Data Not Restored : HKCU\Software\Microsoft\Internet Explorer\Main [bProtector Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\
[!] Key Not Deleted : DoNotAskAgain
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta-search.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com

***** [ Web browsers ] *****

[-] [C:\Users\Gabika\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : webssearches
[-] [C:\Users\Gabika\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : www1.delta-search.com
[-] [C:\Users\Gabika\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://istart.webssearches.com/?type=hp&ts=1404329664&from=amt&uid=ST9500325AS_5VE91TT2XXXX5VE91TT2

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [6819 bytes] ##########

[Rudy]

Dejte nový log RSIT.

[Gabriela88]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Gabika at 2015-11-26 19:42:42
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 52 GB (12%) free of 430 GB
Total RAM: 3892 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:42:47, on 2015.11.26.
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe
C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\SpScreen.exe
C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Gabika.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/secur ... =21.6.0.32
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL (file missing)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: ?????????? ???????? - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MuteSync] C:\PROGRA~2\Lenovo\LENOVO~2\MuteSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [MDS_Menu] "c:\Program Files (x86)\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Lenovo\MediaShow" UpdateWithCreateOnce "Software\CyberLink\MediaShow\4.1"
O4 - HKLM\..\Run: [Lenovo SlideNav2] "C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe"
O4 - HKLM\..\Run: [UCam_Menu] "c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [Lenovo SplitScreen] "C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] C:\windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE /FU "C:\windows\TEMP\E_SF0F4.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - c:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Slidebar Notifier Service - Lenovo - C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12526 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe"
C:\windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"
C:\windows\Explorer.EXE
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\igfxpers.exe"
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\GfxUI.exe" /startup:silent
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe" Utility_Window
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
"C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe" Default
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\SpScreen.exe"
SpScreen64.exe 0
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2364 CREDAT:267521 /prefetch:2
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3774073323-2101973133-2395509523-100319_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3774073323-2101973133-2395509523-100319 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Gabika\Downloads\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-25 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}]
Визуальные закладки

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-03-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v sieti Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-25 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}]
Визуальные закладки

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-03-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-25 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-25 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-03 166424]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-03 391192]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-03 410648]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-01-29 10038304]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-01-29 877600]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-01-07 1894696]
"SynBtnAsst"=C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe [2010-01-07 54568]
"OnekeyStudio"=C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [2009-12-19 776608]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [2010-03-11 4448704]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2010-03-11 7056832]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-01-12 2918656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-01-08 18705664]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2013-01-24 969104]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe []
"EPSON Stylus SX400 Series"=C:\windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE [2007-12-17 221696]
"OneDrive"=C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-11-26 548552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-11-20 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-03 98304]
"MuteSync"=C:\PROGRA~2\Lenovo\LENOVO~2\MuteSync.exe [2009-12-28 336384]
"Adobe Reader Speed Launcher"=c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]
"MDS_Menu"=c:\Program Files (x86)\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe [2009-02-25 218408]
"Lenovo SlideNav2"=C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe [2009-12-30 318400]
"UCam_Menu"=c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"YouCam Mirror Tray icon"=c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2010-02-03 167008]
"VeriFaceManager"=C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [2010-04-20 3122528]
"Lenovo SplitScreen"=C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe [2010-01-26 779104]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-03-03 268800]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1"
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-26 18:40:38 ----D---- C:\AdwCleaner
2015-11-26 18:29:50 ----D---- C:\_OTM
2015-11-26 18:19:15 ----D---- C:\rsit
2015-11-26 18:19:15 ----D---- C:\Program Files\trend micro
2015-11-26 17:52:04 ----HD---- C:\OneDriveTemp
2015-11-26 17:50:18 ----D---- C:\Program Files (x86)\Microsoft OneDrive
2015-11-26 17:50:00 ----D---- C:\ProgramData\Microsoft OneDrive
2015-11-12 20:07:21 ----A---- C:\windows\system32\win32k.sys
2015-11-11 10:53:15 ----A---- C:\windows\system32\wuaueng.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wups.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wudriver.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuapp.exe
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuapi.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuwebv.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wups2.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wups.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wudriver.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wucltux.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuauclt.exe
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuapp.exe
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuapi.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\WinSetupUI.dll
2015-11-11 10:52:58 ----A---- C:\windows\SYSWOW64\apphelp.dll
2015-11-11 10:52:58 ----A---- C:\windows\system32\apphelp.dll
2015-11-11 10:52:58 ----A---- C:\windows\system32\aelupsvc.dll
2015-11-11 10:52:57 ----A---- C:\windows\SYSWOW64\shimeng.dll
2015-11-11 10:52:57 ----A---- C:\windows\SYSWOW64\sdbinst.exe
2015-11-11 10:52:57 ----A---- C:\windows\system32\shimeng.dll
2015-11-11 10:52:57 ----A---- C:\windows\system32\sdbinst.exe
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2015-11-11 10:51:56 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-11-11 10:51:56 ----A---- C:\windows\system32\ieetwcollector.exe
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\occache.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\iernonce.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\ie4uinit.exe
2015-11-11 10:51:54 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-11-11 10:51:54 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-11-11 10:51:53 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-11-11 10:51:52 ----A---- C:\windows\SYSWOW64\iesetup.dll
2015-11-11 10:51:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-11-11 10:51:52 ----A---- C:\windows\system32\occache.dll
2015-11-11 10:51:52 ----A---- C:\windows\system32\iedkcs32.dll
2015-11-11 10:51:51 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-11-11 10:51:51 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-11-11 10:51:51 ----A---- C:\windows\system32\urlmon.dll
2015-11-11 10:51:51 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\iernonce.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-11-11 10:51:50 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-11-11 10:51:50 ----A---- C:\windows\system32\msfeeds.dll
2015-11-11 10:51:50 ----A---- C:\windows\system32\dxtrans.dll
2015-11-11 10:51:49 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-11-11 10:51:48 ----A---- C:\windows\system32\iesetup.dll
2015-11-11 10:51:48 ----A---- C:\windows\system32\ieapfltr.dll
2015-11-11 10:51:47 ----A---- C:\windows\system32\iertutil.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\webcheck.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-11-11 10:51:46 ----A---- C:\windows\system32\vbscript.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-11-11 10:51:45 ----A---- C:\windows\system32\jsproxy.dll
2015-11-11 10:51:44 ----A---- C:\windows\system32\dxtmsft.dll
2015-11-11 10:51:43 ----A---- C:\windows\system32\ieui.dll
2015-11-11 10:51:43 ----A---- C:\windows\system32\ieframe.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\mshtmled.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\ieUnatt.exe
2015-11-11 10:51:41 ----A---- C:\windows\system32\webcheck.dll
2015-11-11 10:51:41 ----A---- C:\windows\system32\jscript9diag.dll
2015-11-11 10:51:41 ----A---- C:\windows\system32\jscript.dll
2015-11-11 10:51:40 ----A---- C:\windows\system32\wininet.dll
2015-11-11 10:51:40 ----A---- C:\windows\system32\jscript9.dll
2015-11-11 10:51:39 ----A---- C:\windows\system32\msrating.dll
2015-11-11 10:51:39 ----A---- C:\windows\system32\MshtmlDac.dll
2015-11-11 10:51:37 ----A---- C:\windows\system32\mshtml.dll
2015-11-11 10:48:15 ----A---- C:\windows\system32\ntoskrnl.exe
2015-11-11 10:48:14 ----A---- C:\windows\system32\schannel.dll
2015-11-11 10:48:14 ----A---- C:\windows\system32\kerberos.dll
2015-11-11 10:48:13 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-11-11 10:48:13 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-11-11 10:48:12 ----A---- C:\windows\system32\ncrypt.dll
2015-11-11 10:48:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-11-11 10:48:12 ----A---- C:\windows\system32\drivers\cng.sys
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2015-11-11 10:48:10 ----A---- C:\windows\system32\kernel32.dll
2015-11-11 10:48:10 ----A---- C:\windows\system32\bcryptprimitives.dll
2015-11-11 10:48:09 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-11-11 10:48:09 ----A---- C:\windows\system32\ntdll.dll
2015-11-11 10:48:09 ----A---- C:\windows\system32\lsasrv.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\wow64.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\rpcrt4.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\KernelBase.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-11-11 10:48:08 ----A---- C:\windows\system32\conhost.exe
2015-11-11 10:48:07 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2015-11-11 10:48:07 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\winsrv.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\wdigest.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\TSpkg.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\sspicli.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\srcore.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\smss.exe
2015-11-11 10:48:07 ----A---- C:\windows\system32\rstrui.exe
2015-11-11 10:48:07 ----A---- C:\windows\system32\msv1_0.dll
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\setup16.exe
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\auditpol.exe
2015-11-11 10:48:06 ----A---- C:\windows\system32\srclient.dll
2015-11-11 10:48:06 ----A---- C:\windows\system32\lsass.exe
2015-11-11 10:48:06 ----A---- C:\windows\system32\auditpol.exe
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\secur32.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\credssp.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\wow64win.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\wow64cpu.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\sspisrv.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\secur32.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\ntvdm64.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\csrsrv.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\cryptbase.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\credssp.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\wow32.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\sspicli.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 10:48:02 ----A---- C:\windows\SYSWOW64\instnm.exe
2015-11-11 10:48:02 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2015-11-11 10:48:02 ----A---- C:\windows\system32\apisetschema.dll
2015-11-11 10:48:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\user.exe
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\msobjs.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\msobjs.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\msaudite.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\adtschema.dll
2015-11-11 10:46:54 ----A---- C:\windows\system32\drivers\tdx.sys
2015-11-11 10:46:54 ----A---- C:\windows\system32\drivers\afd.sys
2015-11-11 10:46:47 ----A---- C:\windows\system32\drivers\ndis.sys
2015-11-11 10:46:27 ----A---- C:\windows\SYSWOW64\InkEd.dll
2015-11-11 10:46:27 ----A---- C:\windows\system32\InkEd.dll
2015-11-11 10:46:26 ----A---- C:\windows\system32\jnwmon.dll

======List of files/folders modified in the last 1 month======

2015-11-26 19:42:43 ----D---- C:\windows\Temp
2015-11-26 19:40:02 ----D---- C:\Users\Gabika\AppData\Roaming\uTorrent
2015-11-26 19:08:42 ----D---- C:\windows\Prefetch
2015-11-26 18:44:00 ----D---- C:\ProgramData\VeriFace
2015-11-26 18:43:30 ----D---- C:\windows\system32\config
2015-11-26 18:43:14 ----A---- C:\windows\SYSWOW64\log.txt
2015-11-26 18:41:58 ----D---- C:\windows\system32\Tasks
2015-11-26 18:41:54 ----RD---- C:\Program Files (x86)
2015-11-26 18:41:54 ----HD---- C:\ProgramData
2015-11-26 18:19:15 ----RD---- C:\Program Files
2015-11-26 17:37:24 ----SHD---- C:\System Volume Information
2015-11-26 17:36:44 ----D---- C:\windows\system32\catroot
2015-11-26 17:36:10 ----D---- C:\windows\system32\drivers
2015-11-26 17:35:51 ----D---- C:\Program Files\Common Files
2015-11-26 17:12:54 ----D---- C:\ProgramData\CyberLink
2015-11-25 19:19:22 ----D---- C:\Program Files (x86)\uTorrent
2015-11-21 22:02:21 ----D---- C:\Users\Gabika\AppData\Roaming\vlc
2015-11-21 13:06:57 ----D---- C:\Users\Gabika\AppData\Roaming\Skype
2015-11-21 12:29:10 ----D---- C:\windows\System32
2015-11-21 12:29:10 ----D---- C:\windows\inf
2015-11-21 12:29:10 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-11-14 13:09:06 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-13 12:09:29 ----D---- C:\windows\rescache
2015-11-13 09:29:02 ----D---- C:\windows\winsxs
2015-11-12 19:31:14 ----D---- C:\windows\SYSWOW64\sk-SK
2015-11-12 19:31:13 ----D---- C:\windows\SysWOW64
2015-11-12 19:31:13 ----D---- C:\windows\system32\sk-SK
2015-11-12 19:31:11 ----D---- C:\Program Files\Internet Explorer
2015-11-12 19:31:10 ----D---- C:\windows\SYSWOW64\en-US
2015-11-12 19:31:07 ----D---- C:\windows\system32\en-US
2015-11-12 19:30:51 ----D---- C:\windows\AppPatch
2015-11-12 19:30:45 ----D---- C:\windows\system32\migration
2015-11-11 23:40:18 ----D---- C:\windows\system32\MRT
2015-11-11 23:37:53 ----D---- C:\windows\Microsoft.NET
2015-11-11 23:35:34 ----RSD---- C:\windows\assembly
2015-11-11 23:33:09 ----A---- C:\windows\system32\MRT.exe
2015-11-11 23:30:46 ----SHD---- C:\windows\Installer
2015-11-11 23:21:22 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2015-11-11 23:19:30 ----D---- C:\Program Files\Windows Journal
2015-11-11 10:45:25 ----D---- C:\windows\system32\catroot2
2015-11-11 10:20:37 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2015-10-31 16:15:45 ----D---- C:\windows\Minidump
2015-10-31 16:15:41 ----D---- C:\Windows

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-11-20 537112]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2010-01-15 39008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 141264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 170640]
R2 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2010-12-21 170640]
R2 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 50624]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2009-10-19 28176]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atipmdag.sys [2010-03-03 6177280]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-03-03 156160]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2009-11-06 1550848]
R3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btusbflt;Bluetooth USB Filter; C:\windows\system32\drivers\btusbflt.sys [2009-12-14 53800]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-15 98344]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2010-01-15 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-15 21288]
R3 Epfwndis;Eset Personal Firewall; C:\windows\system32\DRIVERS\Epfwndis.sys [2010-12-21 34144]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2010-01-29 2260256]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2010-03-03 7843040]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2010-01-20 157296]
R3 JmUsbCcgp;JMicron USB Composite Device Lower Filter Driver; C:\windows\system32\DRIVERS\jmccgp.sys [2010-02-05 17904]
R3 JmUsbVideo;JMicron 31x Upper Filter Driver; C:\windows\System32\Drivers\jmcam.sys [2010-02-05 56688]
R3 JmUsbVideo2;JMicron 31x Lower Filter Driver; C:\windows\System32\Drivers\jmcam_lo.sys [2010-02-05 31088]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTHDMIAzAudService;Service for HDMI; C:\windows\system32\drivers\RtHDMIVX.sys [2010-01-27 231328]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-01-07 302128]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11280]
S1 avmqggza;avmqggza; \??\C:\windows\system32\drivers\avmqggza.sys []
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-16 79376]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2010-03-03 7843040]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 VClone;VClone; C:\windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 151656]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-21 121840]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-03-03 202752]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2010-01-12 873248]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-01-12 810144]
R2 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE [2007-12-17 163840]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE [2007-01-11 126464]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-20 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 Slidebar Notifier Service;Slidebar Notifier Service; C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe [2009-12-30 69568]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe []
S2 ReadyComm.DirectRouter;ReadyComm.DirectRouter; C:\windows\System32\IgrsSvcs.exe -k IgrsSvcs []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11 269000]
S3 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-11 30312]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2011-01-12 42360]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-01 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-10-31 114688]
S3 IGRS;IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [2009-07-15 38152]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [2009-08-14 509192]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [2009-11-17 575304]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-11-24 29263712]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PS_MDP;ReadyComm Presentation Space Helper Service; C:\windows\System32\IgrsSvcs.exe -k IgrsSvcs []
S3 RichVideo;Cyberlink RichVideo Service(CRVS); c:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe [2009-10-29 244904]
S3 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2013-01-27 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]

-----------------EOF-----------------

[Rudy]

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files (x86)\Google\Google Toolbar
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64


:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Dále pomocí utility Symnrt: https://support.norton.com/sp/en/us/hom ... file_en_us odstraňte zbytky po antiviru Norton.

[Gabriela88]

All processes killed
========== FILES ==========
C:\Program Files (x86)\Google\Google Toolbar\Component folder moved successfully.
C:\Program Files (x86)\Google\Google Toolbar folder moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User

User: Gabika
->Temp folder emptied: 1976112 bytes
->Temporary Internet Files folder emptied: 35041797 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 602 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 7036 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 35,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Gabika
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 11262015_200449

Files moved on Reboot...
C:\Users\Gabika\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Gabika\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

Registry entries deleted on Reboot...

[Gabriela88]

Po odstraneni zvysku Nortonu Log z RSIT

Dakujem za rychle odpovede

Inac ako sa nam dari?

Logfile of random's system information tool 1.10 (written by random/random)
Run by Gabika at 2015-11-26 20:11:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 52 GB (12%) free of 430 GB
Total RAM: 3892 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:11:47, on 2015.11.26.
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\SpScreen.exe
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Gabika.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/secur ... =21.6.0.32
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MuteSync] C:\PROGRA~2\Lenovo\LENOVO~2\MuteSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [MDS_Menu] "c:\Program Files (x86)\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Lenovo\MediaShow" UpdateWithCreateOnce "Software\CyberLink\MediaShow\4.1"
O4 - HKLM\..\Run: [Lenovo SlideNav2] "C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe"
O4 - HKLM\..\Run: [UCam_Menu] "c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [Lenovo SplitScreen] "C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] C:\windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE /FU "C:\windows\TEMP\E_SF0F4.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google frissítés Szolgáltatás (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google frissítés Szolgáltatás (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - c:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Slidebar Notifier Service - Lenovo - C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11959 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs

C:\windows\system32\svchost.exe -k NetworkService
atieclxx
C:\windows\System32\spoolsv.exe
taskeng.exe {7E55CF58-A124-4AA6-8598-BEFF2A79E4AC}
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe"
C:\windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\Explorer.EXE
C:\windows\servicing\TrustedInstaller.exe
C:\windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"
"C:\windows\system32\GWX\GWX.exe"
C:\windows\system32\sppsvc.exe
taskeng.exe {817575BB-90D1-4726-A301-7738023DC26C}
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\notepad.exe" C:\_OTM\MovedFiles\11262015_200449.log
"C:\Windows\System32\igfxpers.exe"
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Windows\System32\GfxUI.exe" /startup:silent
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe" Utility_Window
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe"
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\SpScreen.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe" Default
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
SpScreen64.exe 0
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3774073323-2101973133-2395509523-10031_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3774073323-2101973133-2395509523-10031 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1528 CREDAT:267521 /prefetch:2
"C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1528 CREDAT:595262 /prefetch:2
"C:\Users\Gabika\Downloads\RSITx64.exe"
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-03-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v sieti Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-03-25 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-03 166424]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-03 391192]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-03 410648]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-01-29 10038304]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-01-29 877600]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-01-07 1894696]
"SynBtnAsst"=C:\Program Files\Synaptics\SynTP\SynBtnAsst.exe [2010-01-07 54568]
"OnekeyStudio"=C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [2009-12-19 776608]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [2010-03-11 4448704]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2010-03-11 7056832]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-01-12 2918656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-01-08 18705664]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2013-01-24 969104]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe []
"EPSON Stylus SX400 Series"=C:\windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.EXE [2007-12-17 221696]
"OneDrive"=C:\Users\Gabika\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-11-26 548552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-11-20 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-03 98304]
"MuteSync"=C:\PROGRA~2\Lenovo\LENOVO~2\MuteSync.exe [2009-12-28 336384]
"Adobe Reader Speed Launcher"=c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]
"MDS_Menu"=c:\Program Files (x86)\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe [2009-02-25 218408]
"Lenovo SlideNav2"=C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlideNavVDM.exe [2009-12-30 318400]
"UCam_Menu"=c:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]
"YouCam Mirror Tray icon"=c:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2010-02-03 167008]
"VeriFaceManager"=C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [2010-04-20 3122528]
"Lenovo SplitScreen"=C:\Program Files\Lenovo\Lenovo SplitScreen\SplitScreen\AutoRunSpS.exe [2010-01-26 779104]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-03-03 268800]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1"
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-26 20:05:06 ----D---- C:\windows\system32\%LOCALAPPDATA%
2015-11-26 18:40:38 ----D---- C:\AdwCleaner
2015-11-26 18:29:50 ----D---- C:\_OTM
2015-11-26 18:19:15 ----D---- C:\rsit
2015-11-26 18:19:15 ----D---- C:\Program Files\trend micro
2015-11-26 17:52:04 ----HD---- C:\OneDriveTemp
2015-11-26 17:50:18 ----D---- C:\Program Files (x86)\Microsoft OneDrive
2015-11-26 17:50:00 ----D---- C:\ProgramData\Microsoft OneDrive
2015-11-12 20:07:21 ----A---- C:\windows\system32\win32k.sys
2015-11-11 10:53:15 ----A---- C:\windows\system32\wuaueng.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wups.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wudriver.dll
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuapp.exe
2015-11-11 10:53:14 ----A---- C:\windows\SYSWOW64\wuapi.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuwebv.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wups2.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wups.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wudriver.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wucltux.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuauclt.exe
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuapp.exe
2015-11-11 10:53:14 ----A---- C:\windows\system32\wuapi.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2015-11-11 10:53:14 ----A---- C:\windows\system32\WinSetupUI.dll
2015-11-11 10:52:58 ----A---- C:\windows\SYSWOW64\apphelp.dll
2015-11-11 10:52:58 ----A---- C:\windows\system32\apphelp.dll
2015-11-11 10:52:58 ----A---- C:\windows\system32\aelupsvc.dll
2015-11-11 10:52:57 ----A---- C:\windows\SYSWOW64\shimeng.dll
2015-11-11 10:52:57 ----A---- C:\windows\SYSWOW64\sdbinst.exe
2015-11-11 10:52:57 ----A---- C:\windows\system32\shimeng.dll
2015-11-11 10:52:57 ----A---- C:\windows\system32\sdbinst.exe
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-11-11 10:51:56 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2015-11-11 10:51:56 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-11-11 10:51:56 ----A---- C:\windows\system32\ieetwcollector.exe
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\occache.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-11-11 10:51:55 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\iernonce.dll
2015-11-11 10:51:55 ----A---- C:\windows\system32\ie4uinit.exe
2015-11-11 10:51:54 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-11-11 10:51:54 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-11-11 10:51:53 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-11-11 10:51:52 ----A---- C:\windows\SYSWOW64\iesetup.dll
2015-11-11 10:51:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-11-11 10:51:52 ----A---- C:\windows\system32\occache.dll
2015-11-11 10:51:52 ----A---- C:\windows\system32\iedkcs32.dll
2015-11-11 10:51:51 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-11-11 10:51:51 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-11-11 10:51:51 ----A---- C:\windows\system32\urlmon.dll
2015-11-11 10:51:51 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\iernonce.dll
2015-11-11 10:51:50 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-11-11 10:51:50 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-11-11 10:51:50 ----A---- C:\windows\system32\msfeeds.dll
2015-11-11 10:51:50 ----A---- C:\windows\system32\dxtrans.dll
2015-11-11 10:51:49 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-11-11 10:51:48 ----A---- C:\windows\system32\iesetup.dll
2015-11-11 10:51:48 ----A---- C:\windows\system32\ieapfltr.dll
2015-11-11 10:51:47 ----A---- C:\windows\system32\iertutil.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\webcheck.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2015-11-11 10:51:46 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-11-11 10:51:46 ----A---- C:\windows\system32\vbscript.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-11-11 10:51:45 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-11-11 10:51:45 ----A---- C:\windows\system32\jsproxy.dll
2015-11-11 10:51:44 ----A---- C:\windows\system32\dxtmsft.dll
2015-11-11 10:51:43 ----A---- C:\windows\system32\ieui.dll
2015-11-11 10:51:43 ----A---- C:\windows\system32\ieframe.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\mshtmled.dll
2015-11-11 10:51:42 ----A---- C:\windows\system32\ieUnatt.exe
2015-11-11 10:51:41 ----A---- C:\windows\system32\webcheck.dll
2015-11-11 10:51:41 ----A---- C:\windows\system32\jscript9diag.dll
2015-11-11 10:51:41 ----A---- C:\windows\system32\jscript.dll
2015-11-11 10:51:40 ----A---- C:\windows\system32\wininet.dll
2015-11-11 10:51:40 ----A---- C:\windows\system32\jscript9.dll
2015-11-11 10:51:39 ----A---- C:\windows\system32\msrating.dll
2015-11-11 10:51:39 ----A---- C:\windows\system32\MshtmlDac.dll
2015-11-11 10:51:37 ----A---- C:\windows\system32\mshtml.dll
2015-11-11 10:48:15 ----A---- C:\windows\system32\ntoskrnl.exe
2015-11-11 10:48:14 ----A---- C:\windows\system32\schannel.dll
2015-11-11 10:48:14 ----A---- C:\windows\system32\kerberos.dll
2015-11-11 10:48:13 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-11-11 10:48:13 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-11-11 10:48:12 ----A---- C:\windows\system32\ncrypt.dll
2015-11-11 10:48:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-11-11 10:48:12 ----A---- C:\windows\system32\drivers\cng.sys
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2015-11-11 10:48:11 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2015-11-11 10:48:10 ----A---- C:\windows\system32\kernel32.dll
2015-11-11 10:48:10 ----A---- C:\windows\system32\bcryptprimitives.dll
2015-11-11 10:48:09 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-11-11 10:48:09 ----A---- C:\windows\system32\ntdll.dll
2015-11-11 10:48:09 ----A---- C:\windows\system32\lsasrv.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\wow64.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\rpcrt4.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\KernelBase.dll
2015-11-11 10:48:08 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-11-11 10:48:08 ----A---- C:\windows\system32\conhost.exe
2015-11-11 10:48:07 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2015-11-11 10:48:07 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\winsrv.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\wdigest.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\TSpkg.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\sspicli.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\srcore.dll
2015-11-11 10:48:07 ----A---- C:\windows\system32\smss.exe
2015-11-11 10:48:07 ----A---- C:\windows\system32\rstrui.exe
2015-11-11 10:48:07 ----A---- C:\windows\system32\msv1_0.dll
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\setup16.exe
2015-11-11 10:48:06 ----A---- C:\windows\SYSWOW64\auditpol.exe
2015-11-11 10:48:06 ----A---- C:\windows\system32\srclient.dll
2015-11-11 10:48:06 ----A---- C:\windows\system32\lsass.exe
2015-11-11 10:48:06 ----A---- C:\windows\system32\auditpol.exe
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\secur32.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2015-11-11 10:48:05 ----A---- C:\windows\SYSWOW64\credssp.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\wow64win.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\wow64cpu.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\sspisrv.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\secur32.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\ntvdm64.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\csrsrv.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\cryptbase.dll
2015-11-11 10:48:05 ----A---- C:\windows\system32\credssp.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 10:48:04 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\wow32.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\sspicli.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2015-11-11 10:48:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2015-11-11 10:48:04 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 10:48:03 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 10:48:02 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 10:48:02 ----A---- C:\windows\SYSWOW64\instnm.exe
2015-11-11 10:48:02 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2015-11-11 10:48:02 ----A---- C:\windows\system32\apisetschema.dll
2015-11-11 10:48:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 10:48:01 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\user.exe
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\msobjs.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-11-11 10:48:01 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\msobjs.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\msaudite.dll
2015-11-11 10:48:01 ----A---- C:\windows\system32\adtschema.dll
2015-11-11 10:46:54 ----A---- C:\windows\system32\drivers\tdx.sys
2015-11-11 10:46:54 ----A---- C:\windows\system32\drivers\afd.sys
2015-11-11 10:46:47 ----A---- C:\windows\system32\drivers\ndis.sys
2015-11-11 10:46:27 ----A---- C:\windows\SYSWOW64\InkEd.dll
2015-11-11 10:46:27 ----A---- C:\windows\system32\InkEd.dll
2015-11-11 10:46:26 ----A---- C:\windows\system32\jnwmon.dll

======List of files/folders modified in the last 1 month======

2015-11-26 20:11:39 ----D---- C:\windows\Temp
2015-11-26 20:10:50 ----D---- C:\ProgramData\Norton
2015-11-26 20:10:50 ----D---- C:\Program Files (x86)\Common Files
2015-11-26 20:10:29 ----D---- C:\Users\Gabika\AppData\Roaming\uTorrent
2015-11-26 20:08:25 ----D---- C:\ProgramData\VeriFace
2015-11-26 20:07:27 ----D---- C:\windows\system32\config
2015-11-26 20:07:10 ----A---- C:\windows\SYSWOW64\log.txt
2015-11-26 20:05:16 ----D---- C:\windows\Prefetch
2015-11-26 20:05:07 ----D---- C:\windows\Tasks
2015-11-26 20:05:07 ----D---- C:\Program Files (x86)\Google
2015-11-26 20:05:06 ----D---- C:\windows\System32
2015-11-26 18:41:58 ----D---- C:\windows\system32\Tasks
2015-11-26 18:41:54 ----RD---- C:\Program Files (x86)
2015-11-26 18:41:54 ----HD---- C:\ProgramData
2015-11-26 18:19:15 ----RD---- C:\Program Files
2015-11-26 17:37:24 ----SHD---- C:\System Volume Information
2015-11-26 17:36:44 ----D---- C:\windows\system32\catroot
2015-11-26 17:36:10 ----D---- C:\windows\system32\drivers
2015-11-26 17:35:51 ----D---- C:\Program Files\Common Files
2015-11-26 17:12:54 ----D---- C:\ProgramData\CyberLink
2015-11-25 19:19:22 ----D---- C:\Program Files (x86)\uTorrent
2015-11-21 22:02:21 ----D---- C:\Users\Gabika\AppData\Roaming\vlc
2015-11-21 13:06:57 ----D---- C:\Users\Gabika\AppData\Roaming\Skype
2015-11-21 12:29:10 ----D---- C:\windows\inf
2015-11-21 12:29:10 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-11-14 13:09:06 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-13 12:09:29 ----D---- C:\windows\rescache
2015-11-13 09:29:02 ----D---- C:\windows\winsxs
2015-11-12 19:31:14 ----D---- C:\windows\SYSWOW64\sk-SK
2015-11-12 19:31:13 ----D---- C:\windows\SysWOW64
2015-11-12 19:31:13 ----D---- C:\windows\system32\sk-SK
2015-11-12 19:31:11 ----D---- C:\Program Files\Internet Explorer
2015-11-12 19:31:10 ----D---- C:\windows\SYSWOW64\en-US
2015-11-12 19:31:07 ----D---- C:\windows\system32\en-US
2015-11-12 19:30:51 ----D---- C:\windows\AppPatch
2015-11-12 19:30:45 ----D---- C:\windows\system32\migration
2015-11-11 23:40:18 ----D---- C:\windows\system32\MRT
2015-11-11 23:37:53 ----D---- C:\windows\Microsoft.NET
2015-11-11 23:35:34 ----RSD---- C:\windows\assembly
2015-11-11 23:33:09 ----A---- C:\windows\system32\MRT.exe
2015-11-11 23:30:46 ----SHD---- C:\windows\Installer
2015-11-11 23:21:22 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2015-11-11 23:19:30 ----D---- C:\Program Files\Windows Journal
2015-11-11 10:45:25 ----D---- C:\windows\system32\catroot2
2015-11-11 10:20:37 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2015-10-31 16:15:45 ----D---- C:\windows\Minidump
2015-10-31 16:15:41 ----D---- C:\Windows

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-11-20 537112]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2010-01-15 39008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 141264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 170640]
R2 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2010-12-21 170640]
R2 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2010-12-21 50624]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2009-10-19 28176]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atipmdag.sys [2010-03-03 6177280]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-03-03 156160]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2009-11-06 1550848]
R3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btusbflt;Bluetooth USB Filter; C:\windows\system32\drivers\btusbflt.sys [2009-12-14 53800]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-15 98344]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2010-01-15 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-15 21288]
R3 Epfwndis;Eset Personal Firewall; C:\windows\system32\DRIVERS\Epfwndis.sys [2010-12-21 34144]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2010-01-29 2260256]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2010-03-03 7843040]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2010-01-20 157296]
R3 JmUsbCcgp;JMicron USB Composite Device Lower Filter Driver; C:\windows\system32\DRIVERS\jmccgp.sys [2010-02-05 17904]
R3 JmUsbVideo;JMicron 31x Upper Filter Driver; C:\windows\System32\Drivers\jmcam.sys [2010-02-05 56688]
R3 JmUsbVideo2;JMicron 31x Lower Filter Driver; C:\windows\System32\Drivers\jmcam_lo.sys [2010-02-05 31088]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTHDMIAzAudService;Service for HDMI; C:\windows\system32\drivers\RtHDMIVX.sys [2010-01-27 231328]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-01-07 302128]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11280]
S1 avmqggza;avmqggza; \??\C:\windows\system32\drivers\avmqggza.sys []
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-16 79376]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2010-03-03 7843040]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 VClone;VClone; C:\windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 151656]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-21 121840]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-03-03 202752]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2010-01-12 873248]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-01-12 810144]
R2 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE [2007-12-17 163840]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE [2007-01-11 126464]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-20 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 Slidebar Notifier Service;Slidebar Notifier Service; C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe [2009-12-30 69568]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Google frissítés Szolgáltatás (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe []
S2 ReadyComm.DirectRouter;ReadyComm.DirectRouter; C:\windows\System32\IgrsSvcs.exe -k IgrsSvcs []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11 269000]
S3 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-11 30312]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2011-01-12 42360]
S3 gupdatem;Google frissítés Szolgáltatás (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-01 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-10-31 114688]
S3 IGRS;IGRS; C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe [2009-07-15 38152]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [2009-08-14 509192]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [2009-11-17 575304]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-11-24 29263712]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PS_MDP;ReadyComm Presentation Space Helper Service; C:\windows\System32\IgrsSvcs.exe -k IgrsSvcs []
S3 RichVideo;Cyberlink RichVideo Service(CRVS); c:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe [2009-10-29 244904]
S3 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2013-01-27 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]

-----------------EOF-----------------

[Rudy]

Vše smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?