Dobrý večer mám zpomalené PC, v pravém spodním rohu na ploše vyskakuje stále nějaké čínská reklama -okno. Pokud dám vlastnosti toho okna vyhazuje mi to např. http://ubmcmm.baidustatic.com.....
Prosím o pomoc s odstraněním těchto problémů. Předem děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Karlos at 2016-01-06 20:42:07
Microsoft Windows 10 Home
System drive C: has 16 GB (9%) free of 175 GB
Total RAM: 3327 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:42:27, on 6.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\Program Files\TrainTickets_201601012349\201601012349\tslog.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Karlos\Desktop\RSIT.exe
C:\Program Files\trend micro\Karlos.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [setup_info] C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start
O4 - HKLM\..\Run: [MTview] C:\Program Files\MTV20151125\MTView.exe -mini
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [TrainTickets] C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe -mini
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 8295 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-11-04 748744]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2009-06-14 307200]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"setup_info"=C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start []
"MTview"=C:\Program Files\MTV20151125\MTView.exe [2015-11-25 1875464]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"cz.seznam.software.autoupdate"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-01-23 31087200]
"OneDrive"=C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-01-03 551112]
"TrainTickets"=C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe [2016-01-01 764344]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-06 20:42:09 ----D---- C:\Program Files\trend micro
2016-01-06 20:42:07 ----D---- C:\rsit
2016-01-06 20:27:46 ----D---- C:\DAEMON Tools Lite
2016-01-06 18:07:30 ----D---- C:\WINDOWS\system32\SleepStudy
2016-01-04 22:00:56 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-01-04 21:59:09 ----D---- C:\ProgramData\Malwarebytes
2016-01-04 21:38:59 ----A---- C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2016-01-04 21:30:58 ----D---- C:\AdwCleaner
2016-01-03 16:46:07 ----A---- C:\WINDOWS\wininit.ini
2016-01-03 14:59:19 ----D---- C:\Program Files\Common Files\AV
2016-01-03 14:56:15 ----D---- C:\ProgramData\Spybot - Search & Destroy
2016-01-03 14:56:02 ----D---- C:\Program Files\Spybot - Search & Destroy 2
2016-01-03 13:56:52 ----ASH---- C:\hiberfil.sys
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-01-03 13:45:34 ----SD---- C:\Users\Karlos\AppData\Roaming\Microsoft
2016-01-03 13:44:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-03 13:42:04 ----D---- C:\ProgramData\AMD
2016-01-03 13:41:35 ----D---- C:\Program Files\ATI Technologies
2016-01-03 13:41:28 ----D---- C:\ProgramData\Package Cache
2016-01-03 13:40:47 ----D---- C:\Program Files\Common Files\ATI Technologies
2016-01-03 13:40:39 ----D---- C:\Program Files\AMD
2016-01-03 13:40:08 ----AS---- C:\WINDOWS\bootstat.dat
2016-01-03 13:39:35 ----D---- C:\WINDOWS\Prefetch
2016-01-03 13:38:53 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-03 13:38:03 ----SHD---- C:\Recovery
2016-01-03 13:37:59 ----DC---- C:\WINDOWS\Panther
2016-01-03 13:32:55 ----D---- C:\Windows.old
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfds.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\twinui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shell32.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wups2.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRH.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\services.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provtool.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provops.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32k.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\user32.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mf.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cdp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-03 13:27:50 ----D---- C:\WINDOWS\system32\Microsoft
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\XPSViewer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\msmq
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\BestPractices
2016-01-03 13:24:29 ----D---- C:\Program Files\Reference Assemblies
2016-01-03 13:24:29 ----D---- C:\Program Files\MSBuild
2016-01-03 13:24:29 ----D---- C:\inetpub
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-01 23:57:49 ----D---- C:\$SysReset
2016-01-01 23:50:39 ----A---- C:\WINDOWS\system32\drivers\DMRedirect.sys
2016-01-01 23:50:38 ----D---- C:\Program Files\ADSafe
2016-01-01 23:50:27 ----D---- C:\Users\Karlos\AppData\Roaming\ADSafe3
2016-01-01 23:49:53 ----D---- C:\Program Files\TrainTickets_201601012349
2016-01-01 23:48:37 ----D---- C:\Program Files\MTV20151125
2016-01-01 23:32:14 ----D---- C:\ProgramData\DivX
2015-12-18 13:09:34 ----D---- C:\ProgramData\ATI
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantleaxl32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantle32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\hsa-thunk.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiuxpag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdva.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiu9pag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atitmmxx.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atisamu32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atioglxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimpc32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atigktxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieah32.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidxx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticfx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticalrt.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticaldd.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticalcl.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdxc32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdocl_ld32.exe
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl12cl.dll
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl_as32.exe
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdocl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmmcl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmantle32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdlvr32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhdl32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhcp32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdgfxinfo32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdave32.dll
======List of files/folders modified in the last 1 month======
2016-01-06 20:42:14 ----D---- C:\WINDOWS\Temp
2016-01-06 20:42:11 ----D---- C:\WINDOWS\AppReadiness
2016-01-06 20:42:09 ----RD---- C:\Program Files
2016-01-06 20:41:21 ----D---- C:\Users\Karlos\AppData\Roaming\Seznam.cz
2016-01-06 20:39:10 ----D---- C:\WINDOWS\System32
2016-01-06 20:39:09 ----D---- C:\WINDOWS\INF
2016-01-06 20:29:52 ----RD---- C:\Users
2016-01-06 20:24:15 ----D---- C:\WINDOWS\system32\sru
2016-01-06 20:18:30 ----D---- C:\WINDOWS\Logs
2016-01-06 18:53:07 ----D---- C:\WINDOWS\WinSxS
2016-01-06 18:53:05 ----D---- C:\WINDOWS\CbsTemp
2016-01-06 18:48:54 ----D---- C:\WINDOWS\system32\config
2016-01-06 18:47:38 ----D---- C:\Users\Karlos\AppData\Roaming\vlc
2016-01-06 17:57:32 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-06 17:52:51 ----RD---- C:\WINDOWS\assembly
2016-01-06 16:22:53 ----HD---- C:\Program Files\WindowsApps
2016-01-05 23:53:28 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-05 16:23:49 ----HD---- C:\ProgramData
2016-01-05 16:23:01 ----D---- C:\WINDOWS\system32\drivers
2016-01-05 15:44:47 ----SHD---- C:\System Volume Information
2016-01-05 15:41:52 ----D---- C:\WINDOWS\system32\restore
2016-01-05 15:41:44 ----D---- C:\WINDOWS\debug
2016-01-04 22:28:57 ----RD---- C:\WINDOWS\MiracastView
2016-01-04 21:36:41 ----D---- C:\Program Files\Common Files
2016-01-04 18:40:12 ----D---- C:\Users\Karlos\AppData\Roaming\BSplayer PRO
2016-01-04 15:49:43 ----D---- C:\WINDOWS\AppCompat
2016-01-04 15:48:32 ----D---- C:\WINDOWS\system32\WDI
2016-01-03 16:46:09 ----SD---- C:\ProgramData\Microsoft
2016-01-03 16:46:07 ----D---- C:\Windows
2016-01-03 16:34:51 ----D---- C:\Users\Karlos\AppData\Roaming\uTorrent
2016-01-03 14:56:43 ----D---- C:\WINDOWS\system32\Tasks
2016-01-03 14:26:39 ----RD---- C:\WINDOWS\DevicesFlow
2016-01-03 14:10:08 ----D---- C:\WINDOWS\rescache
2016-01-03 14:07:57 ----RD---- C:\WINDOWS\PrintDialog
2016-01-03 14:07:20 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-01-03 14:06:02 ----D---- C:\Program Files\Windows NT
2016-01-03 14:05:56 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-01-03 14:05:38 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-03 14:04:17 ----D---- C:\WINDOWS\Registration
2016-01-03 14:02:40 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-03 14:02:26 ----D---- C:\WINDOWS\Tasks
2016-01-03 14:01:44 ----RSD---- C:\WINDOWS\Media
2016-01-03 14:01:37 ----D---- C:\WINDOWS\system32\wbem
2016-01-03 14:01:35 ----D---- C:\WINDOWS\system32\drivers\etc
2016-01-03 13:58:12 ----D---- C:\WINDOWS\system32\catroot2
2016-01-03 13:56:08 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-01-03 13:56:08 ----D---- C:\WINDOWS\ShellNew
2016-01-03 13:56:07 ----SHD---- C:\WINDOWS\Installer
2016-01-03 13:56:05 ----RSD---- C:\WINDOWS\Fonts
2016-01-03 13:56:05 ----D---- C:\WINDOWS\ehome
2016-01-03 13:56:05 ----D---- C:\WINDOWS\cs
2016-01-03 13:49:23 ----D---- C:\WINDOWS\twain_32
2016-01-03 13:49:21 ----D---- C:\WINDOWS\system32\SPReview
2016-01-03 13:49:20 ----D---- C:\WINDOWS\system32\spool
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\NDF
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\MRT
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\migration
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\IME
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\EventProviders
2016-01-03 13:49:14 ----D---- C:\WINDOWS\system32\en-US
2016-01-03 13:49:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-01-03 13:49:13 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-01-03 13:49:11 ----D---- C:\WINDOWS\system32\cs-CZ
2016-01-03 13:48:50 ----SHD---- C:\WINDOWS\system32\AI_RecycleBin
2016-01-03 13:48:50 ----D---- C:\WINDOWS\system32\CatRoot
2016-01-03 13:48:45 ----D---- C:\WINDOWS\schemas
2016-01-03 13:48:44 ----RD---- C:\WINDOWS\PurchaseDialog
2016-01-03 13:48:44 ----D---- C:\WINDOWS\PolicyDefinitions
2016-01-03 13:48:42 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-03 13:48:21 ----D---- C:\ProgramData\USOPrivate
2016-01-03 13:48:09 ----SHD---- C:\Program Files\Windows Sidebar
2016-01-03 13:48:08 ----D---- C:\Program Files\Windows Mail
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft.NET
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft Games
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\System
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\microsoft shared
2016-01-03 13:47:22 ----D---- C:\WINDOWS\system32\Recovery
2016-01-03 13:43:42 ----D---- C:\WINDOWS\system32\Sysprep
2016-01-03 13:42:25 ----HD---- C:\Config.Msi
2016-01-03 13:40:52 ----D---- C:\AMD
2016-01-03 13:40:00 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-01-03 13:39:04 ----D---- C:\WINDOWS\ServiceProfiles
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\oobe
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\Dism
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\appraiser
2016-01-03 13:32:40 ----D---- C:\WINDOWS\Provisioning
2016-01-03 13:32:40 ----D---- C:\WINDOWS\bcastdvr
2016-01-03 13:32:40 ----D---- C:\WINDOWS\apppatch
2016-01-03 13:32:40 ----D---- C:\Program Files\Internet Explorer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\MUI
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\inetsrv
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-01-03 13:24:16 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-01-03 13:24:15 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-01-03 13:24:14 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-01-03 13:16:20 ----RASH---- C:\BOOTSECT.BAK
2016-01-03 13:16:17 ----SHD---- C:\Boot
2016-01-03 13:10:07 ----HD---- C:\$WINDOWS.~BT
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-23 13:25:58 ----D---- C:\Users\Karlos\AppData\Roaming\dvdcss
2015-12-09 18:45:13 ----D---- C:\Windows.old(1)
2015-12-09 15:44:24 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-09 15:26:33 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2012-12-29 24184]
R1 dtsoftbus01;@oem19.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-04-06 243128]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdiox86;@oem1.inf,%amdio.SvcDesc%;AMD IO Driver; C:\WINDOWS\System32\drivers\amdiox86.sys [2010-02-18 37944]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-17 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-17 542192]
R3 AtiHDAudioService;@oem21.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-05-28 82432]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-01-03 130560]
R3 NVNET;@netnvm32.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6232.sys [2015-10-30 291456]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 ALSysIO;ALSysIO; \??\C:\Users\Karlos\AppData\Local\Temp\ALSysIO.sys [2016-01-03 25064]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-03 96768]
S3 DMRedirect;DMRedirect; \??\C:\WINDOWS\system32\drivers\DMRedirect.sys [2015-12-03 43776]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2014-03-31 49856]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2014-04-06 15600]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-01-05 170200]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-10-30 48640]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-17 223216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 284872]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-01-03 25088]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 OneSyncSvc_1b28b7;Hostitel synchronizace_1b28b7; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_33e0e;Hostitel synchronizace_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_40e2c;Hostitel synchronizace_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1b28b7;Služba zasílání zpráv_1b28b7; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_33e0e;Služba zasílání zpráv_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_40e2c;Služba zasílání zpráv_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1b28b7;Data kontaktů_1b28b7; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_33e0e;Data kontaktů_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_40e2c;Data kontaktů_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_1b28b7;Úložiště uživatelských dat_1b28b7; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_33e0e;Úložiště uživatelských dat_33e0e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_40e2c;Úložiště uživatelských dat_40e2c; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zpomalení PC, reklama s čínskými znaky v pravém dolním rohu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
# AdwCleaner v5.028 - Logfile created 06/01/2016 at 21:27:42
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 10 Home (x86)
# Username : Karlos - KARLOS-PC
# Running from : C:\Users\Karlos\Desktop\adwcleaner_5.028.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File Deleted : C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\hao.360.cn
***** [ Web browsers ] *****
[-] [C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-search.com/?affID=119776&babs ... 1A4DF68ECB
[-] [C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.mysites123.com/?type=hp&ts=14516875 ... jdrp909529
[-] [C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bmkckgpgekmanipelfidlhmkfcjicion
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1446 bytes] ##########
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 10 Home (x86)
# Username : Karlos - KARLOS-PC
# Running from : C:\Users\Karlos\Desktop\adwcleaner_5.028.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File Deleted : C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\hao.360.cn
***** [ Web browsers ] *****
[-] [C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-search.com/?affID=119776&babs ... 1A4DF68ECB
[-] [C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.mysites123.com/?type=hp&ts=14516875 ... jdrp909529
[-] [C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bmkckgpgekmanipelfidlhmkfcjicion
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1446 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Ta čínská reklama je stále na ploše.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Karlos at 2016-01-06 22:29:31
Microsoft Windows 10 Home
System drive C: has 16 GB (9%) free of 175 GB
Total RAM: 3327 MB (50% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:29:38, on 6.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\Program Files\TrainTickets_201601012349\201601012349\tslog.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Webteh\BSplayerPro\bsplayer.exe
C:\Windows\System32\SystemSettingsBroker.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Karlos\Desktop\RSIT.exe
C:\Program Files\trend micro\Karlos.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [setup_info] C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start
O4 - HKLM\..\Run: [MTview] C:\Program Files\MTV20151125\MTView.exe -mini
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [TrainTickets] C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe -mini
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 8498 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-11-04 748744]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2009-06-14 307200]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"setup_info"=C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start []
"MTview"=C:\Program Files\MTV20151125\MTView.exe [2015-11-25 1875464]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"cz.seznam.software.autoupdate"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-01-23 31087200]
"OneDrive"=C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-01-03 551112]
"TrainTickets"=C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe [2016-01-01 764344]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-06 20:42:09 ----D---- C:\Program Files\trend micro
2016-01-06 20:42:07 ----D---- C:\rsit
2016-01-06 20:27:46 ----D---- C:\DAEMON Tools Lite
2016-01-06 18:07:30 ----D---- C:\WINDOWS\system32\SleepStudy
2016-01-04 22:00:56 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-01-04 21:59:09 ----D---- C:\ProgramData\Malwarebytes
2016-01-04 21:30:58 ----D---- C:\AdwCleaner
2016-01-03 16:46:07 ----A---- C:\WINDOWS\wininit.ini
2016-01-03 14:59:19 ----D---- C:\Program Files\Common Files\AV
2016-01-03 14:56:15 ----D---- C:\ProgramData\Spybot - Search & Destroy
2016-01-03 14:56:02 ----D---- C:\Program Files\Spybot - Search & Destroy 2
2016-01-03 13:56:52 ----ASH---- C:\hiberfil.sys
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-01-03 13:45:34 ----SD---- C:\Users\Karlos\AppData\Roaming\Microsoft
2016-01-03 13:44:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-03 13:42:04 ----D---- C:\ProgramData\AMD
2016-01-03 13:41:35 ----D---- C:\Program Files\ATI Technologies
2016-01-03 13:41:28 ----D---- C:\ProgramData\Package Cache
2016-01-03 13:40:47 ----D---- C:\Program Files\Common Files\ATI Technologies
2016-01-03 13:40:39 ----D---- C:\Program Files\AMD
2016-01-03 13:40:08 ----AS---- C:\WINDOWS\bootstat.dat
2016-01-03 13:39:35 ----D---- C:\WINDOWS\Prefetch
2016-01-03 13:38:53 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-03 13:38:03 ----SHD---- C:\Recovery
2016-01-03 13:37:59 ----DC---- C:\WINDOWS\Panther
2016-01-03 13:32:55 ----D---- C:\Windows.old
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfds.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\twinui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shell32.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wups2.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRH.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\services.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provtool.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provops.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32k.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\user32.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mf.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cdp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-03 13:27:50 ----D---- C:\WINDOWS\system32\Microsoft
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\XPSViewer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\msmq
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\BestPractices
2016-01-03 13:24:29 ----D---- C:\Program Files\Reference Assemblies
2016-01-03 13:24:29 ----D---- C:\Program Files\MSBuild
2016-01-03 13:24:29 ----D---- C:\inetpub
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-01 23:57:49 ----D---- C:\$SysReset
2016-01-01 23:50:39 ----A---- C:\WINDOWS\system32\drivers\DMRedirect.sys
2016-01-01 23:50:38 ----D---- C:\Program Files\ADSafe
2016-01-01 23:50:27 ----D---- C:\Users\Karlos\AppData\Roaming\ADSafe3
2016-01-01 23:49:53 ----D---- C:\Program Files\TrainTickets_201601012349
2016-01-01 23:48:37 ----D---- C:\Program Files\MTV20151125
2016-01-01 23:32:14 ----D---- C:\ProgramData\DivX
2015-12-18 13:09:34 ----D---- C:\ProgramData\ATI
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantleaxl32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantle32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\hsa-thunk.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiuxpag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdva.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiu9pag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atitmmxx.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atisamu32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atioglxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimpc32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atigktxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieah32.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidxx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticfx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticalrt.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticaldd.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticalcl.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdxc32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdocl_ld32.exe
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl12cl.dll
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl_as32.exe
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdocl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmmcl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmantle32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdlvr32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhdl32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhcp32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdgfxinfo32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdave32.dll
======List of files/folders modified in the last 1 month======
2016-01-06 22:28:51 ----D---- C:\WINDOWS\Temp
2016-01-06 21:36:02 ----D---- C:\WINDOWS\System32
2016-01-06 21:36:02 ----D---- C:\WINDOWS\INF
2016-01-06 21:35:37 ----D---- C:\Users\Karlos\AppData\Roaming\Seznam.cz
2016-01-06 21:28:30 ----D---- C:\WINDOWS\system32\sru
2016-01-06 21:27:42 ----D---- C:\WINDOWS\system32\drivers
2016-01-06 20:42:11 ----D---- C:\WINDOWS\AppReadiness
2016-01-06 20:42:09 ----RD---- C:\Program Files
2016-01-06 20:29:52 ----RD---- C:\Users
2016-01-06 20:18:30 ----D---- C:\WINDOWS\Logs
2016-01-06 18:53:07 ----D---- C:\WINDOWS\WinSxS
2016-01-06 18:53:07 ----D---- C:\WINDOWS\CbsTemp
2016-01-06 18:48:54 ----D---- C:\WINDOWS\system32\config
2016-01-06 18:47:38 ----D---- C:\Users\Karlos\AppData\Roaming\vlc
2016-01-06 17:57:32 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-06 17:52:51 ----RD---- C:\WINDOWS\assembly
2016-01-06 16:22:53 ----HD---- C:\Program Files\WindowsApps
2016-01-05 23:53:28 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-05 16:23:49 ----HD---- C:\ProgramData
2016-01-05 15:44:47 ----SHD---- C:\System Volume Information
2016-01-05 15:41:52 ----D---- C:\WINDOWS\system32\restore
2016-01-05 15:41:44 ----D---- C:\WINDOWS\debug
2016-01-04 22:28:57 ----RD---- C:\WINDOWS\MiracastView
2016-01-04 21:36:41 ----D---- C:\Program Files\Common Files
2016-01-04 18:40:12 ----D---- C:\Users\Karlos\AppData\Roaming\BSplayer PRO
2016-01-04 15:49:43 ----D---- C:\WINDOWS\AppCompat
2016-01-04 15:48:32 ----D---- C:\WINDOWS\system32\WDI
2016-01-03 16:46:09 ----SD---- C:\ProgramData\Microsoft
2016-01-03 16:46:07 ----D---- C:\Windows
2016-01-03 16:34:51 ----D---- C:\Users\Karlos\AppData\Roaming\uTorrent
2016-01-03 14:56:43 ----D---- C:\WINDOWS\system32\Tasks
2016-01-03 14:26:39 ----RD---- C:\WINDOWS\DevicesFlow
2016-01-03 14:10:08 ----D---- C:\WINDOWS\rescache
2016-01-03 14:07:57 ----RD---- C:\WINDOWS\PrintDialog
2016-01-03 14:07:20 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-01-03 14:06:02 ----D---- C:\Program Files\Windows NT
2016-01-03 14:05:56 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-01-03 14:05:38 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-03 14:04:17 ----D---- C:\WINDOWS\Registration
2016-01-03 14:02:40 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-03 14:02:26 ----D---- C:\WINDOWS\Tasks
2016-01-03 14:01:44 ----RSD---- C:\WINDOWS\Media
2016-01-03 14:01:37 ----D---- C:\WINDOWS\system32\wbem
2016-01-03 14:01:35 ----D---- C:\WINDOWS\system32\drivers\etc
2016-01-03 13:58:12 ----D---- C:\WINDOWS\system32\catroot2
2016-01-03 13:56:08 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-01-03 13:56:08 ----D---- C:\WINDOWS\ShellNew
2016-01-03 13:56:07 ----SHD---- C:\WINDOWS\Installer
2016-01-03 13:56:05 ----RSD---- C:\WINDOWS\Fonts
2016-01-03 13:56:05 ----D---- C:\WINDOWS\ehome
2016-01-03 13:56:05 ----D---- C:\WINDOWS\cs
2016-01-03 13:49:23 ----D---- C:\WINDOWS\twain_32
2016-01-03 13:49:21 ----D---- C:\WINDOWS\system32\SPReview
2016-01-03 13:49:20 ----D---- C:\WINDOWS\system32\spool
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\NDF
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\MRT
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\migration
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\IME
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\EventProviders
2016-01-03 13:49:14 ----D---- C:\WINDOWS\system32\en-US
2016-01-03 13:49:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-01-03 13:49:13 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-01-03 13:49:11 ----D---- C:\WINDOWS\system32\cs-CZ
2016-01-03 13:48:50 ----SHD---- C:\WINDOWS\system32\AI_RecycleBin
2016-01-03 13:48:50 ----D---- C:\WINDOWS\system32\CatRoot
2016-01-03 13:48:45 ----D---- C:\WINDOWS\schemas
2016-01-03 13:48:44 ----RD---- C:\WINDOWS\PurchaseDialog
2016-01-03 13:48:44 ----D---- C:\WINDOWS\PolicyDefinitions
2016-01-03 13:48:42 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-03 13:48:21 ----D---- C:\ProgramData\USOPrivate
2016-01-03 13:48:09 ----SHD---- C:\Program Files\Windows Sidebar
2016-01-03 13:48:08 ----D---- C:\Program Files\Windows Mail
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft.NET
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft Games
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\System
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\microsoft shared
2016-01-03 13:47:22 ----D---- C:\WINDOWS\system32\Recovery
2016-01-03 13:43:42 ----D---- C:\WINDOWS\system32\Sysprep
2016-01-03 13:42:25 ----HD---- C:\Config.Msi
2016-01-03 13:40:52 ----D---- C:\AMD
2016-01-03 13:40:00 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-01-03 13:39:04 ----D---- C:\WINDOWS\ServiceProfiles
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\oobe
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\Dism
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\appraiser
2016-01-03 13:32:40 ----D---- C:\WINDOWS\Provisioning
2016-01-03 13:32:40 ----D---- C:\WINDOWS\bcastdvr
2016-01-03 13:32:40 ----D---- C:\WINDOWS\apppatch
2016-01-03 13:32:40 ----D---- C:\Program Files\Internet Explorer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\MUI
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\inetsrv
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-01-03 13:24:16 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-01-03 13:24:15 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-01-03 13:24:14 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-01-03 13:16:20 ----RASH---- C:\BOOTSECT.BAK
2016-01-03 13:16:17 ----SHD---- C:\Boot
2016-01-03 13:10:07 ----HD---- C:\$WINDOWS.~BT
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-23 13:25:58 ----D---- C:\Users\Karlos\AppData\Roaming\dvdcss
2015-12-09 18:45:13 ----D---- C:\Windows.old(1)
2015-12-09 15:44:24 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-09 15:26:33 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2012-12-29 24184]
R1 dtsoftbus01;@oem19.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-04-06 243128]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdiox86;@oem1.inf,%amdio.SvcDesc%;AMD IO Driver; C:\WINDOWS\System32\drivers\amdiox86.sys [2010-02-18 37944]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-17 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-17 542192]
R3 AtiHDAudioService;@oem21.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-05-28 82432]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-01-03 130560]
R3 NVNET;@netnvm32.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6232.sys [2015-10-30 291456]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 ALSysIO;ALSysIO; \??\C:\Users\Karlos\AppData\Local\Temp\ALSysIO.sys [2016-01-03 25064]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-03 96768]
S3 DMRedirect;DMRedirect; \??\C:\WINDOWS\system32\drivers\DMRedirect.sys [2015-12-03 43776]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2014-03-31 49856]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2014-04-06 15600]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-01-05 170200]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-10-30 48640]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-17 223216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 284872]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-01-03 25088]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_30e48;Hostitel synchronizace_30e48; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_33e0e;Hostitel synchronizace_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_40e2c;Hostitel synchronizace_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_30e48;Služba zasílání zpráv_30e48; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_33e0e;Služba zasílání zpráv_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_40e2c;Služba zasílání zpráv_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_30e48;Data kontaktů_30e48; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_33e0e;Data kontaktů_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_40e2c;Data kontaktů_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_30e48;Úložiště uživatelských dat_30e48; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_33e0e;Úložiště uživatelských dat_33e0e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_40e2c;Úložiště uživatelských dat_40e2c; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Karlos at 2016-01-06 22:29:31
Microsoft Windows 10 Home
System drive C: has 16 GB (9%) free of 175 GB
Total RAM: 3327 MB (50% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:29:38, on 6.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\Program Files\TrainTickets_201601012349\201601012349\tslog.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Webteh\BSplayerPro\bsplayer.exe
C:\Windows\System32\SystemSettingsBroker.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Karlos\Desktop\RSIT.exe
C:\Program Files\trend micro\Karlos.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [setup_info] C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start
O4 - HKLM\..\Run: [MTview] C:\Program Files\MTV20151125\MTView.exe -mini
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [TrainTickets] C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe -mini
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 8498 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-11-04 748744]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2009-06-14 307200]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-09 153136]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"setup_info"=C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start []
"MTview"=C:\Program Files\MTV20151125\MTView.exe [2015-11-25 1875464]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"cz.seznam.software.autoupdate"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-01-23 31087200]
"OneDrive"=C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-01-03 551112]
"TrainTickets"=C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe [2016-01-01 764344]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-06 20:42:09 ----D---- C:\Program Files\trend micro
2016-01-06 20:42:07 ----D---- C:\rsit
2016-01-06 20:27:46 ----D---- C:\DAEMON Tools Lite
2016-01-06 18:07:30 ----D---- C:\WINDOWS\system32\SleepStudy
2016-01-04 22:00:56 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-01-04 21:59:09 ----D---- C:\ProgramData\Malwarebytes
2016-01-04 21:30:58 ----D---- C:\AdwCleaner
2016-01-03 16:46:07 ----A---- C:\WINDOWS\wininit.ini
2016-01-03 14:59:19 ----D---- C:\Program Files\Common Files\AV
2016-01-03 14:56:15 ----D---- C:\ProgramData\Spybot - Search & Destroy
2016-01-03 14:56:02 ----D---- C:\Program Files\Spybot - Search & Destroy 2
2016-01-03 13:56:52 ----ASH---- C:\hiberfil.sys
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-01-03 13:45:34 ----SD---- C:\Users\Karlos\AppData\Roaming\Microsoft
2016-01-03 13:44:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-03 13:42:04 ----D---- C:\ProgramData\AMD
2016-01-03 13:41:35 ----D---- C:\Program Files\ATI Technologies
2016-01-03 13:41:28 ----D---- C:\ProgramData\Package Cache
2016-01-03 13:40:47 ----D---- C:\Program Files\Common Files\ATI Technologies
2016-01-03 13:40:39 ----D---- C:\Program Files\AMD
2016-01-03 13:40:08 ----AS---- C:\WINDOWS\bootstat.dat
2016-01-03 13:39:35 ----D---- C:\WINDOWS\Prefetch
2016-01-03 13:38:53 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-03 13:38:03 ----SHD---- C:\Recovery
2016-01-03 13:37:59 ----DC---- C:\WINDOWS\Panther
2016-01-03 13:32:55 ----D---- C:\Windows.old
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfds.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\twinui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shell32.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wups2.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRH.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\services.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provtool.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provops.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32k.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\user32.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mf.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cdp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-03 13:27:50 ----D---- C:\WINDOWS\system32\Microsoft
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\XPSViewer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\msmq
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\BestPractices
2016-01-03 13:24:29 ----D---- C:\Program Files\Reference Assemblies
2016-01-03 13:24:29 ----D---- C:\Program Files\MSBuild
2016-01-03 13:24:29 ----D---- C:\inetpub
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-01 23:57:49 ----D---- C:\$SysReset
2016-01-01 23:50:39 ----A---- C:\WINDOWS\system32\drivers\DMRedirect.sys
2016-01-01 23:50:38 ----D---- C:\Program Files\ADSafe
2016-01-01 23:50:27 ----D---- C:\Users\Karlos\AppData\Roaming\ADSafe3
2016-01-01 23:49:53 ----D---- C:\Program Files\TrainTickets_201601012349
2016-01-01 23:48:37 ----D---- C:\Program Files\MTV20151125
2016-01-01 23:32:14 ----D---- C:\ProgramData\DivX
2015-12-18 13:09:34 ----D---- C:\ProgramData\ATI
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantleaxl32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantle32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\hsa-thunk.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiuxpag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdva.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiu9pag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atitmmxx.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atisamu32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atioglxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimpc32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atigktxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieah32.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidxx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticfx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticalrt.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticaldd.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticalcl.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdxc32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdocl_ld32.exe
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl12cl.dll
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl_as32.exe
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdocl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmmcl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmantle32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdlvr32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhdl32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhcp32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdgfxinfo32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdave32.dll
======List of files/folders modified in the last 1 month======
2016-01-06 22:28:51 ----D---- C:\WINDOWS\Temp
2016-01-06 21:36:02 ----D---- C:\WINDOWS\System32
2016-01-06 21:36:02 ----D---- C:\WINDOWS\INF
2016-01-06 21:35:37 ----D---- C:\Users\Karlos\AppData\Roaming\Seznam.cz
2016-01-06 21:28:30 ----D---- C:\WINDOWS\system32\sru
2016-01-06 21:27:42 ----D---- C:\WINDOWS\system32\drivers
2016-01-06 20:42:11 ----D---- C:\WINDOWS\AppReadiness
2016-01-06 20:42:09 ----RD---- C:\Program Files
2016-01-06 20:29:52 ----RD---- C:\Users
2016-01-06 20:18:30 ----D---- C:\WINDOWS\Logs
2016-01-06 18:53:07 ----D---- C:\WINDOWS\WinSxS
2016-01-06 18:53:07 ----D---- C:\WINDOWS\CbsTemp
2016-01-06 18:48:54 ----D---- C:\WINDOWS\system32\config
2016-01-06 18:47:38 ----D---- C:\Users\Karlos\AppData\Roaming\vlc
2016-01-06 17:57:32 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-06 17:52:51 ----RD---- C:\WINDOWS\assembly
2016-01-06 16:22:53 ----HD---- C:\Program Files\WindowsApps
2016-01-05 23:53:28 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-05 16:23:49 ----HD---- C:\ProgramData
2016-01-05 15:44:47 ----SHD---- C:\System Volume Information
2016-01-05 15:41:52 ----D---- C:\WINDOWS\system32\restore
2016-01-05 15:41:44 ----D---- C:\WINDOWS\debug
2016-01-04 22:28:57 ----RD---- C:\WINDOWS\MiracastView
2016-01-04 21:36:41 ----D---- C:\Program Files\Common Files
2016-01-04 18:40:12 ----D---- C:\Users\Karlos\AppData\Roaming\BSplayer PRO
2016-01-04 15:49:43 ----D---- C:\WINDOWS\AppCompat
2016-01-04 15:48:32 ----D---- C:\WINDOWS\system32\WDI
2016-01-03 16:46:09 ----SD---- C:\ProgramData\Microsoft
2016-01-03 16:46:07 ----D---- C:\Windows
2016-01-03 16:34:51 ----D---- C:\Users\Karlos\AppData\Roaming\uTorrent
2016-01-03 14:56:43 ----D---- C:\WINDOWS\system32\Tasks
2016-01-03 14:26:39 ----RD---- C:\WINDOWS\DevicesFlow
2016-01-03 14:10:08 ----D---- C:\WINDOWS\rescache
2016-01-03 14:07:57 ----RD---- C:\WINDOWS\PrintDialog
2016-01-03 14:07:20 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-01-03 14:06:02 ----D---- C:\Program Files\Windows NT
2016-01-03 14:05:56 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-01-03 14:05:38 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-03 14:04:17 ----D---- C:\WINDOWS\Registration
2016-01-03 14:02:40 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-03 14:02:26 ----D---- C:\WINDOWS\Tasks
2016-01-03 14:01:44 ----RSD---- C:\WINDOWS\Media
2016-01-03 14:01:37 ----D---- C:\WINDOWS\system32\wbem
2016-01-03 14:01:35 ----D---- C:\WINDOWS\system32\drivers\etc
2016-01-03 13:58:12 ----D---- C:\WINDOWS\system32\catroot2
2016-01-03 13:56:08 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-01-03 13:56:08 ----D---- C:\WINDOWS\ShellNew
2016-01-03 13:56:07 ----SHD---- C:\WINDOWS\Installer
2016-01-03 13:56:05 ----RSD---- C:\WINDOWS\Fonts
2016-01-03 13:56:05 ----D---- C:\WINDOWS\ehome
2016-01-03 13:56:05 ----D---- C:\WINDOWS\cs
2016-01-03 13:49:23 ----D---- C:\WINDOWS\twain_32
2016-01-03 13:49:21 ----D---- C:\WINDOWS\system32\SPReview
2016-01-03 13:49:20 ----D---- C:\WINDOWS\system32\spool
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\NDF
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\MRT
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\migration
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\IME
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\EventProviders
2016-01-03 13:49:14 ----D---- C:\WINDOWS\system32\en-US
2016-01-03 13:49:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-01-03 13:49:13 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-01-03 13:49:11 ----D---- C:\WINDOWS\system32\cs-CZ
2016-01-03 13:48:50 ----SHD---- C:\WINDOWS\system32\AI_RecycleBin
2016-01-03 13:48:50 ----D---- C:\WINDOWS\system32\CatRoot
2016-01-03 13:48:45 ----D---- C:\WINDOWS\schemas
2016-01-03 13:48:44 ----RD---- C:\WINDOWS\PurchaseDialog
2016-01-03 13:48:44 ----D---- C:\WINDOWS\PolicyDefinitions
2016-01-03 13:48:42 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-03 13:48:21 ----D---- C:\ProgramData\USOPrivate
2016-01-03 13:48:09 ----SHD---- C:\Program Files\Windows Sidebar
2016-01-03 13:48:08 ----D---- C:\Program Files\Windows Mail
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft.NET
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft Games
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\System
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\microsoft shared
2016-01-03 13:47:22 ----D---- C:\WINDOWS\system32\Recovery
2016-01-03 13:43:42 ----D---- C:\WINDOWS\system32\Sysprep
2016-01-03 13:42:25 ----HD---- C:\Config.Msi
2016-01-03 13:40:52 ----D---- C:\AMD
2016-01-03 13:40:00 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-01-03 13:39:04 ----D---- C:\WINDOWS\ServiceProfiles
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\oobe
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\Dism
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\appraiser
2016-01-03 13:32:40 ----D---- C:\WINDOWS\Provisioning
2016-01-03 13:32:40 ----D---- C:\WINDOWS\bcastdvr
2016-01-03 13:32:40 ----D---- C:\WINDOWS\apppatch
2016-01-03 13:32:40 ----D---- C:\Program Files\Internet Explorer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\MUI
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\inetsrv
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-01-03 13:24:16 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-01-03 13:24:15 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-01-03 13:24:14 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-01-03 13:16:20 ----RASH---- C:\BOOTSECT.BAK
2016-01-03 13:16:17 ----SHD---- C:\Boot
2016-01-03 13:10:07 ----HD---- C:\$WINDOWS.~BT
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-23 13:25:58 ----D---- C:\Users\Karlos\AppData\Roaming\dvdcss
2015-12-09 18:45:13 ----D---- C:\Windows.old(1)
2015-12-09 15:44:24 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-09 15:26:33 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2012-12-29 24184]
R1 dtsoftbus01;@oem19.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-04-06 243128]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdiox86;@oem1.inf,%amdio.SvcDesc%;AMD IO Driver; C:\WINDOWS\System32\drivers\amdiox86.sys [2010-02-18 37944]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-17 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-17 542192]
R3 AtiHDAudioService;@oem21.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-05-28 82432]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-01-03 130560]
R3 NVNET;@netnvm32.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6232.sys [2015-10-30 291456]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 ALSysIO;ALSysIO; \??\C:\Users\Karlos\AppData\Local\Temp\ALSysIO.sys [2016-01-03 25064]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-03 96768]
S3 DMRedirect;DMRedirect; \??\C:\WINDOWS\system32\drivers\DMRedirect.sys [2015-12-03 43776]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2014-03-31 49856]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2014-04-06 15600]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-01-05 170200]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-10-30 48640]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-17 223216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 284872]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-01-03 25088]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_30e48;Hostitel synchronizace_30e48; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_33e0e;Hostitel synchronizace_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_40e2c;Hostitel synchronizace_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_30e48;Služba zasílání zpráv_30e48; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_33e0e;Služba zasílání zpráv_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_40e2c;Služba zasílání zpráv_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_30e48;Data kontaktů_30e48; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_33e0e;Data kontaktů_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_40e2c;Data kontaktů_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_30e48;Úložiště uživatelských dat_30e48; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_33e0e;Úložiště uživatelských dat_33e0e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_40e2c;Úložiště uživatelských dat_40e2c; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Reklama opět vyskočila.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Karlos at 2016-01-06 23:13:55
Microsoft Windows 10 Home
System drive C: has 17 GB (10%) free of 175 GB
Total RAM: 3327 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:14:10, on 6.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\sihost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\backgroundTaskHost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Windows\system32\msfeedssync.exe
C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe
C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\Program Files\TrainTickets_201601012349\201601012349\tslog.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Karlos\Desktop\RSIT.exe
C:\Program Files\trend micro\Karlos.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [setup_info] C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start
O4 - HKLM\..\Run: [MTview] C:\Program Files\MTV20151125\MTView.exe -mini
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [TrainTickets] C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe -mini
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 8257 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-11-04 748744]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2009-06-14 307200]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"setup_info"=C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start []
"MTview"=C:\Program Files\MTV20151125\MTView.exe [2015-11-25 1875464]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"cz.seznam.software.autoupdate"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-01-23 31087200]
"OneDrive"=C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-01-03 551112]
"TrainTickets"=C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe [2016-01-01 764344]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-06 23:04:38 ----D---- C:\_OTM
2016-01-06 20:42:09 ----D---- C:\Program Files\trend micro
2016-01-06 20:42:07 ----D---- C:\rsit
2016-01-06 20:27:46 ----D---- C:\DAEMON Tools Lite
2016-01-06 18:07:30 ----D---- C:\WINDOWS\system32\SleepStudy
2016-01-04 22:00:56 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-01-04 21:59:09 ----D---- C:\ProgramData\Malwarebytes
2016-01-04 21:30:58 ----D---- C:\AdwCleaner
2016-01-03 16:46:07 ----A---- C:\WINDOWS\wininit.ini
2016-01-03 14:59:19 ----D---- C:\Program Files\Common Files\AV
2016-01-03 14:56:15 ----D---- C:\ProgramData\Spybot - Search & Destroy
2016-01-03 14:56:02 ----D---- C:\Program Files\Spybot - Search & Destroy 2
2016-01-03 13:56:52 ----ASH---- C:\hiberfil.sys
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-01-03 13:45:34 ----SD---- C:\Users\Karlos\AppData\Roaming\Microsoft
2016-01-03 13:44:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-03 13:42:04 ----D---- C:\ProgramData\AMD
2016-01-03 13:41:35 ----D---- C:\Program Files\ATI Technologies
2016-01-03 13:41:28 ----D---- C:\ProgramData\Package Cache
2016-01-03 13:40:47 ----D---- C:\Program Files\Common Files\ATI Technologies
2016-01-03 13:40:39 ----D---- C:\Program Files\AMD
2016-01-03 13:40:08 ----AS---- C:\WINDOWS\bootstat.dat
2016-01-03 13:39:35 ----D---- C:\WINDOWS\Prefetch
2016-01-03 13:38:53 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-03 13:38:03 ----SHD---- C:\Recovery
2016-01-03 13:37:59 ----DC---- C:\WINDOWS\Panther
2016-01-03 13:32:55 ----D---- C:\Windows.old
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfds.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\twinui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shell32.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wups2.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRH.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\services.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provtool.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provops.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32k.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\user32.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mf.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cdp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-03 13:27:50 ----D---- C:\WINDOWS\system32\Microsoft
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\XPSViewer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\msmq
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\BestPractices
2016-01-03 13:24:29 ----D---- C:\Program Files\Reference Assemblies
2016-01-03 13:24:29 ----D---- C:\Program Files\MSBuild
2016-01-03 13:24:29 ----D---- C:\inetpub
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-01 23:57:49 ----D---- C:\$SysReset
2016-01-01 23:50:39 ----A---- C:\WINDOWS\system32\drivers\DMRedirect.sys
2016-01-01 23:50:38 ----D---- C:\Program Files\ADSafe
2016-01-01 23:50:27 ----D---- C:\Users\Karlos\AppData\Roaming\ADSafe3
2016-01-01 23:49:53 ----D---- C:\Program Files\TrainTickets_201601012349
2016-01-01 23:48:37 ----D---- C:\Program Files\MTV20151125
2016-01-01 23:32:14 ----D---- C:\ProgramData\DivX
2015-12-18 13:09:34 ----D---- C:\ProgramData\ATI
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantleaxl32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantle32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\hsa-thunk.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiuxpag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdva.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiu9pag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atitmmxx.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atisamu32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atioglxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimpc32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atigktxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieah32.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidxx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticfx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticalrt.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticaldd.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticalcl.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdxc32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdocl_ld32.exe
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl12cl.dll
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl_as32.exe
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdocl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmmcl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmantle32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdlvr32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhdl32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhcp32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdgfxinfo32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdave32.dll
======List of files/folders modified in the last 1 month======
2016-01-06 23:12:44 ----D---- C:\WINDOWS\Temp
2016-01-06 23:10:01 ----D---- C:\WINDOWS\system32\sru
2016-01-06 23:04:42 ----D---- C:\WINDOWS\Tasks
2016-01-06 21:36:02 ----D---- C:\WINDOWS\System32
2016-01-06 21:36:02 ----D---- C:\WINDOWS\INF
2016-01-06 21:35:37 ----D---- C:\Users\Karlos\AppData\Roaming\Seznam.cz
2016-01-06 21:27:42 ----D---- C:\WINDOWS\system32\drivers
2016-01-06 20:42:11 ----D---- C:\WINDOWS\AppReadiness
2016-01-06 20:42:09 ----RD---- C:\Program Files
2016-01-06 20:29:52 ----RD---- C:\Users
2016-01-06 20:18:30 ----D---- C:\WINDOWS\Logs
2016-01-06 18:53:07 ----D---- C:\WINDOWS\WinSxS
2016-01-06 18:53:07 ----D---- C:\WINDOWS\CbsTemp
2016-01-06 18:48:54 ----D---- C:\WINDOWS\system32\config
2016-01-06 18:47:38 ----D---- C:\Users\Karlos\AppData\Roaming\vlc
2016-01-06 17:57:32 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-06 17:52:51 ----RD---- C:\WINDOWS\assembly
2016-01-06 16:22:53 ----HD---- C:\Program Files\WindowsApps
2016-01-05 23:53:28 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-05 16:23:49 ----HD---- C:\ProgramData
2016-01-05 15:44:47 ----SHD---- C:\System Volume Information
2016-01-05 15:41:52 ----D---- C:\WINDOWS\system32\restore
2016-01-05 15:41:44 ----D---- C:\WINDOWS\debug
2016-01-04 22:28:57 ----RD---- C:\WINDOWS\MiracastView
2016-01-04 21:36:41 ----D---- C:\Program Files\Common Files
2016-01-04 18:40:12 ----D---- C:\Users\Karlos\AppData\Roaming\BSplayer PRO
2016-01-04 15:49:43 ----D---- C:\WINDOWS\AppCompat
2016-01-04 15:48:32 ----D---- C:\WINDOWS\system32\WDI
2016-01-03 16:46:09 ----SD---- C:\ProgramData\Microsoft
2016-01-03 16:46:07 ----D---- C:\Windows
2016-01-03 16:34:51 ----D---- C:\Users\Karlos\AppData\Roaming\uTorrent
2016-01-03 14:56:43 ----D---- C:\WINDOWS\system32\Tasks
2016-01-03 14:26:39 ----RD---- C:\WINDOWS\DevicesFlow
2016-01-03 14:10:08 ----D---- C:\WINDOWS\rescache
2016-01-03 14:07:57 ----RD---- C:\WINDOWS\PrintDialog
2016-01-03 14:07:20 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-01-03 14:06:02 ----D---- C:\Program Files\Windows NT
2016-01-03 14:05:56 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-01-03 14:05:38 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-03 14:04:17 ----D---- C:\WINDOWS\Registration
2016-01-03 14:02:40 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-03 14:01:44 ----RSD---- C:\WINDOWS\Media
2016-01-03 14:01:37 ----D---- C:\WINDOWS\system32\wbem
2016-01-03 14:01:35 ----D---- C:\WINDOWS\system32\drivers\etc
2016-01-03 13:58:12 ----D---- C:\WINDOWS\system32\catroot2
2016-01-03 13:56:08 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-01-03 13:56:08 ----D---- C:\WINDOWS\ShellNew
2016-01-03 13:56:07 ----SHD---- C:\WINDOWS\Installer
2016-01-03 13:56:05 ----RSD---- C:\WINDOWS\Fonts
2016-01-03 13:56:05 ----D---- C:\WINDOWS\ehome
2016-01-03 13:56:05 ----D---- C:\WINDOWS\cs
2016-01-03 13:49:23 ----D---- C:\WINDOWS\twain_32
2016-01-03 13:49:21 ----D---- C:\WINDOWS\system32\SPReview
2016-01-03 13:49:20 ----D---- C:\WINDOWS\system32\spool
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\NDF
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\MRT
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\migration
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\IME
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\EventProviders
2016-01-03 13:49:14 ----D---- C:\WINDOWS\system32\en-US
2016-01-03 13:49:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-01-03 13:49:13 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-01-03 13:49:11 ----D---- C:\WINDOWS\system32\cs-CZ
2016-01-03 13:48:50 ----SHD---- C:\WINDOWS\system32\AI_RecycleBin
2016-01-03 13:48:50 ----D---- C:\WINDOWS\system32\CatRoot
2016-01-03 13:48:45 ----D---- C:\WINDOWS\schemas
2016-01-03 13:48:44 ----RD---- C:\WINDOWS\PurchaseDialog
2016-01-03 13:48:44 ----D---- C:\WINDOWS\PolicyDefinitions
2016-01-03 13:48:42 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-03 13:48:21 ----D---- C:\ProgramData\USOPrivate
2016-01-03 13:48:09 ----SHD---- C:\Program Files\Windows Sidebar
2016-01-03 13:48:08 ----D---- C:\Program Files\Windows Mail
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft.NET
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft Games
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\System
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\microsoft shared
2016-01-03 13:47:22 ----D---- C:\WINDOWS\system32\Recovery
2016-01-03 13:43:42 ----D---- C:\WINDOWS\system32\Sysprep
2016-01-03 13:42:25 ----HD---- C:\Config.Msi
2016-01-03 13:40:52 ----D---- C:\AMD
2016-01-03 13:40:00 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-01-03 13:39:04 ----D---- C:\WINDOWS\ServiceProfiles
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\oobe
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\Dism
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\appraiser
2016-01-03 13:32:40 ----D---- C:\WINDOWS\Provisioning
2016-01-03 13:32:40 ----D---- C:\WINDOWS\bcastdvr
2016-01-03 13:32:40 ----D---- C:\WINDOWS\apppatch
2016-01-03 13:32:40 ----D---- C:\Program Files\Internet Explorer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\MUI
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\inetsrv
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-01-03 13:24:16 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-01-03 13:24:15 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-01-03 13:24:14 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-01-03 13:16:20 ----RASH---- C:\BOOTSECT.BAK
2016-01-03 13:16:17 ----SHD---- C:\Boot
2016-01-03 13:10:07 ----HD---- C:\$WINDOWS.~BT
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-23 13:25:58 ----D---- C:\Users\Karlos\AppData\Roaming\dvdcss
2015-12-09 18:45:13 ----D---- C:\Windows.old(1)
2015-12-09 15:44:24 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-09 15:26:33 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2012-12-29 24184]
R1 dtsoftbus01;@oem19.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-04-06 243128]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdiox86;@oem1.inf,%amdio.SvcDesc%;AMD IO Driver; C:\WINDOWS\System32\drivers\amdiox86.sys [2010-02-18 37944]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-17 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-17 542192]
R3 AtiHDAudioService;@oem21.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-05-28 82432]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-01-03 130560]
R3 NVNET;@netnvm32.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6232.sys [2015-10-30 291456]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 ALSysIO;ALSysIO; \??\C:\Users\Karlos\AppData\Local\Temp\ALSysIO.sys []
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-03 96768]
S3 DMRedirect;DMRedirect; \??\C:\WINDOWS\system32\drivers\DMRedirect.sys [2015-12-03 43776]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2014-03-31 49856]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2014-04-06 15600]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-01-05 170200]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-10-30 48640]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-17 223216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 284872]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-01-03 25088]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_2e7e1;Hostitel synchronizace_2e7e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_33e0e;Hostitel synchronizace_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_40e2c;Hostitel synchronizace_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_2e7e1;Služba zasílání zpráv_2e7e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_33e0e;Služba zasílání zpráv_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_40e2c;Služba zasílání zpráv_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_2e7e1;Data kontaktů_2e7e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_33e0e;Data kontaktů_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_40e2c;Data kontaktů_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_2e7e1;Úložiště uživatelských dat_2e7e1; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_33e0e;Úložiště uživatelských dat_33e0e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_40e2c;Úložiště uživatelských dat_40e2c; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Karlos at 2016-01-06 23:13:55
Microsoft Windows 10 Home
System drive C: has 17 GB (10%) free of 175 GB
Total RAM: 3327 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:14:10, on 6.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\sihost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\backgroundTaskHost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Windows\system32\msfeedssync.exe
C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe
C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\Program Files\TrainTickets_201601012349\201601012349\tslog.exe
C:\Program Files\TrainTickets_201601012349\201601012349\lcstat.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Karlos\Desktop\RSIT.exe
C:\Program Files\trend micro\Karlos.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [setup_info] C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start
O4 - HKLM\..\Run: [MTview] C:\Program Files\MTV20151125\MTView.exe -mini
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [TrainTickets] C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe -mini
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 8257 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-11-04 748744]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2009-06-14 307200]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"setup_info"=C:\Users\Karlos\AppData\Local\Temp\setup_info.exe /start []
"MTview"=C:\Program Files\MTV20151125\MTView.exe [2015-11-25 1875464]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"cz.seznam.software.autoupdate"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Karlos\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-01-23 31087200]
"OneDrive"=C:\Users\Karlos\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-01-03 551112]
"TrainTickets"=C:\Program Files\TrainTickets_201601012349\201601012349\TrainTickets.exe [2016-01-01 764344]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-06 23:04:38 ----D---- C:\_OTM
2016-01-06 20:42:09 ----D---- C:\Program Files\trend micro
2016-01-06 20:42:07 ----D---- C:\rsit
2016-01-06 20:27:46 ----D---- C:\DAEMON Tools Lite
2016-01-06 18:07:30 ----D---- C:\WINDOWS\system32\SleepStudy
2016-01-04 22:00:56 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-01-04 21:59:09 ----D---- C:\ProgramData\Malwarebytes
2016-01-04 21:30:58 ----D---- C:\AdwCleaner
2016-01-03 16:46:07 ----A---- C:\WINDOWS\wininit.ini
2016-01-03 14:59:19 ----D---- C:\Program Files\Common Files\AV
2016-01-03 14:56:15 ----D---- C:\ProgramData\Spybot - Search & Destroy
2016-01-03 14:56:02 ----D---- C:\Program Files\Spybot - Search & Destroy 2
2016-01-03 13:56:52 ----ASH---- C:\hiberfil.sys
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-01-03 13:45:34 ----SD---- C:\Users\Karlos\AppData\Roaming\Microsoft
2016-01-03 13:44:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-03 13:42:04 ----D---- C:\ProgramData\AMD
2016-01-03 13:41:35 ----D---- C:\Program Files\ATI Technologies
2016-01-03 13:41:28 ----D---- C:\ProgramData\Package Cache
2016-01-03 13:40:47 ----D---- C:\Program Files\Common Files\ATI Technologies
2016-01-03 13:40:39 ----D---- C:\Program Files\AMD
2016-01-03 13:40:08 ----AS---- C:\WINDOWS\bootstat.dat
2016-01-03 13:39:35 ----D---- C:\WINDOWS\Prefetch
2016-01-03 13:38:53 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-03 13:38:03 ----SHD---- C:\Recovery
2016-01-03 13:37:59 ----DC---- C:\WINDOWS\Panther
2016-01-03 13:32:55 ----D---- C:\Windows.old
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfds.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-03 13:32:04 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-01-03 13:31:58 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\jscript.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-01-03 13:31:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\twinui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\shell32.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-01-03 13:31:56 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wups2.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wininet.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\SRH.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\services.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provtool.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provops.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-01-03 13:31:53 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\win32k.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\user32.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\moshost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mf.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputService.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\cdp.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-01-03 13:31:52 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-03 13:27:50 ----D---- C:\WINDOWS\system32\Microsoft
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\XPSViewer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\msmq
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\BestPractices
2016-01-03 13:24:29 ----D---- C:\Program Files\Reference Assemblies
2016-01-03 13:24:29 ----D---- C:\Program Files\MSBuild
2016-01-03 13:24:29 ----D---- C:\inetpub
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-03 13:23:48 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-01 23:57:49 ----D---- C:\$SysReset
2016-01-01 23:50:39 ----A---- C:\WINDOWS\system32\drivers\DMRedirect.sys
2016-01-01 23:50:38 ----D---- C:\Program Files\ADSafe
2016-01-01 23:50:27 ----D---- C:\Users\Karlos\AppData\Roaming\ADSafe3
2016-01-01 23:49:53 ----D---- C:\Program Files\TrainTickets_201601012349
2016-01-01 23:48:37 ----D---- C:\Program Files\MTV20151125
2016-01-01 23:32:14 ----D---- C:\ProgramData\DivX
2015-12-18 13:09:34 ----D---- C:\ProgramData\ATI
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantleaxl32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\mantle32.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\hsa-thunk.dll
2015-12-17 13:24:17 ----A---- C:\WINDOWS\system32\detoured.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-12-17 13:24:16 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvsva.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_vi.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_FJ.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce03.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\ativce02.dat
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiuxpag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdva.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiumdag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atiu9pag.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atitmmxx.dll
2015-12-17 13:24:11 ----A---- C:\WINDOWS\system32\atisamu32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atioglxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atimpc32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atigktxx.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atieah32.exe
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidxx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticfx32.dll
2015-12-17 13:24:10 ----A---- C:\WINDOWS\system32\aticalrt.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticaldd.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\aticalcl.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdxc32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2015-12-17 13:24:09 ----A---- C:\WINDOWS\system32\amdocl_ld32.exe
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl12cl.dll
2015-12-17 13:24:08 ----A---- C:\WINDOWS\system32\amdocl_as32.exe
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdocl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmmcl.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdmantle32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdlvr32.dll
2015-12-17 13:24:07 ----A---- C:\WINDOWS\system32\amdicdxx.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhdl32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdhcp32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdgfxinfo32.dll
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amde31a.dat
2015-12-17 13:24:06 ----A---- C:\WINDOWS\system32\amdave32.dll
======List of files/folders modified in the last 1 month======
2016-01-06 23:12:44 ----D---- C:\WINDOWS\Temp
2016-01-06 23:10:01 ----D---- C:\WINDOWS\system32\sru
2016-01-06 23:04:42 ----D---- C:\WINDOWS\Tasks
2016-01-06 21:36:02 ----D---- C:\WINDOWS\System32
2016-01-06 21:36:02 ----D---- C:\WINDOWS\INF
2016-01-06 21:35:37 ----D---- C:\Users\Karlos\AppData\Roaming\Seznam.cz
2016-01-06 21:27:42 ----D---- C:\WINDOWS\system32\drivers
2016-01-06 20:42:11 ----D---- C:\WINDOWS\AppReadiness
2016-01-06 20:42:09 ----RD---- C:\Program Files
2016-01-06 20:29:52 ----RD---- C:\Users
2016-01-06 20:18:30 ----D---- C:\WINDOWS\Logs
2016-01-06 18:53:07 ----D---- C:\WINDOWS\WinSxS
2016-01-06 18:53:07 ----D---- C:\WINDOWS\CbsTemp
2016-01-06 18:48:54 ----D---- C:\WINDOWS\system32\config
2016-01-06 18:47:38 ----D---- C:\Users\Karlos\AppData\Roaming\vlc
2016-01-06 17:57:32 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-06 17:52:51 ----RD---- C:\WINDOWS\assembly
2016-01-06 16:22:53 ----HD---- C:\Program Files\WindowsApps
2016-01-05 23:53:28 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-05 16:23:49 ----HD---- C:\ProgramData
2016-01-05 15:44:47 ----SHD---- C:\System Volume Information
2016-01-05 15:41:52 ----D---- C:\WINDOWS\system32\restore
2016-01-05 15:41:44 ----D---- C:\WINDOWS\debug
2016-01-04 22:28:57 ----RD---- C:\WINDOWS\MiracastView
2016-01-04 21:36:41 ----D---- C:\Program Files\Common Files
2016-01-04 18:40:12 ----D---- C:\Users\Karlos\AppData\Roaming\BSplayer PRO
2016-01-04 15:49:43 ----D---- C:\WINDOWS\AppCompat
2016-01-04 15:48:32 ----D---- C:\WINDOWS\system32\WDI
2016-01-03 16:46:09 ----SD---- C:\ProgramData\Microsoft
2016-01-03 16:46:07 ----D---- C:\Windows
2016-01-03 16:34:51 ----D---- C:\Users\Karlos\AppData\Roaming\uTorrent
2016-01-03 14:56:43 ----D---- C:\WINDOWS\system32\Tasks
2016-01-03 14:26:39 ----RD---- C:\WINDOWS\DevicesFlow
2016-01-03 14:10:08 ----D---- C:\WINDOWS\rescache
2016-01-03 14:07:57 ----RD---- C:\WINDOWS\PrintDialog
2016-01-03 14:07:20 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-01-03 14:06:02 ----D---- C:\Program Files\Windows NT
2016-01-03 14:05:56 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-01-03 14:05:38 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-03 14:04:17 ----D---- C:\WINDOWS\Registration
2016-01-03 14:02:40 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-03 14:01:44 ----RSD---- C:\WINDOWS\Media
2016-01-03 14:01:37 ----D---- C:\WINDOWS\system32\wbem
2016-01-03 14:01:35 ----D---- C:\WINDOWS\system32\drivers\etc
2016-01-03 13:58:12 ----D---- C:\WINDOWS\system32\catroot2
2016-01-03 13:56:08 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-01-03 13:56:08 ----D---- C:\WINDOWS\ShellNew
2016-01-03 13:56:07 ----SHD---- C:\WINDOWS\Installer
2016-01-03 13:56:05 ----RSD---- C:\WINDOWS\Fonts
2016-01-03 13:56:05 ----D---- C:\WINDOWS\ehome
2016-01-03 13:56:05 ----D---- C:\WINDOWS\cs
2016-01-03 13:49:23 ----D---- C:\WINDOWS\twain_32
2016-01-03 13:49:21 ----D---- C:\WINDOWS\system32\SPReview
2016-01-03 13:49:20 ----D---- C:\WINDOWS\system32\spool
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\NDF
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\MRT
2016-01-03 13:49:16 ----D---- C:\WINDOWS\system32\migration
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\IME
2016-01-03 13:49:15 ----D---- C:\WINDOWS\system32\EventProviders
2016-01-03 13:49:14 ----D---- C:\WINDOWS\system32\en-US
2016-01-03 13:49:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-01-03 13:49:13 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-01-03 13:49:11 ----D---- C:\WINDOWS\system32\cs-CZ
2016-01-03 13:48:50 ----SHD---- C:\WINDOWS\system32\AI_RecycleBin
2016-01-03 13:48:50 ----D---- C:\WINDOWS\system32\CatRoot
2016-01-03 13:48:45 ----D---- C:\WINDOWS\schemas
2016-01-03 13:48:44 ----RD---- C:\WINDOWS\PurchaseDialog
2016-01-03 13:48:44 ----D---- C:\WINDOWS\PolicyDefinitions
2016-01-03 13:48:42 ----D---- C:\WINDOWS\LiveKernelReports
2016-01-03 13:48:21 ----D---- C:\ProgramData\USOPrivate
2016-01-03 13:48:09 ----SHD---- C:\Program Files\Windows Sidebar
2016-01-03 13:48:08 ----D---- C:\Program Files\Windows Mail
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft.NET
2016-01-03 13:48:07 ----D---- C:\Program Files\Microsoft Games
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\System
2016-01-03 13:48:06 ----D---- C:\Program Files\Common Files\microsoft shared
2016-01-03 13:47:22 ----D---- C:\WINDOWS\system32\Recovery
2016-01-03 13:43:42 ----D---- C:\WINDOWS\system32\Sysprep
2016-01-03 13:42:25 ----HD---- C:\Config.Msi
2016-01-03 13:40:52 ----D---- C:\AMD
2016-01-03 13:40:00 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-01-03 13:39:04 ----D---- C:\WINDOWS\ServiceProfiles
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\oobe
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\Dism
2016-01-03 13:32:40 ----D---- C:\WINDOWS\system32\appraiser
2016-01-03 13:32:40 ----D---- C:\WINDOWS\Provisioning
2016-01-03 13:32:40 ----D---- C:\WINDOWS\bcastdvr
2016-01-03 13:32:40 ----D---- C:\WINDOWS\apppatch
2016-01-03 13:32:40 ----D---- C:\Program Files\Internet Explorer
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\MUI
2016-01-03 13:24:30 ----D---- C:\WINDOWS\system32\inetsrv
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-01-03 13:24:24 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-01-03 13:24:22 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-01-03 13:24:19 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-01-03 13:24:17 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-01-03 13:24:16 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-01-03 13:24:15 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-01-03 13:24:14 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-01-03 13:16:20 ----RASH---- C:\BOOTSECT.BAK
2016-01-03 13:16:17 ----SHD---- C:\Boot
2016-01-03 13:10:07 ----HD---- C:\$WINDOWS.~BT
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-23 13:25:58 ----D---- C:\Users\Karlos\AppData\Roaming\dvdcss
2015-12-09 18:45:13 ----D---- C:\Windows.old(1)
2015-12-09 15:44:24 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-09 15:26:33 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2012-12-29 24184]
R1 dtsoftbus01;@oem19.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-04-06 243128]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdiox86;@oem1.inf,%amdio.SvcDesc%;AMD IO Driver; C:\WINDOWS\System32\drivers\amdiox86.sys [2010-02-18 37944]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-17 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-17 542192]
R3 AtiHDAudioService;@oem21.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-05-28 82432]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-01-03 130560]
R3 NVNET;@netnvm32.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6232.sys [2015-10-30 291456]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 ALSysIO;ALSysIO; \??\C:\Users\Karlos\AppData\Local\Temp\ALSysIO.sys []
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-03 96768]
S3 DMRedirect;DMRedirect; \??\C:\WINDOWS\system32\drivers\DMRedirect.sys [2015-12-03 43776]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2014-03-31 49856]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2014-04-06 15600]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2016-01-05 170200]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-10-30 48640]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-17 223216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 284872]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-01-03 25088]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_2e7e1;Hostitel synchronizace_2e7e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2015-10-30 37256]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_33e0e;Hostitel synchronizace_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_40e2c;Hostitel synchronizace_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_2e7e1;Služba zasílání zpráv_2e7e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_33e0e;Služba zasílání zpráv_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_40e2c;Služba zasílání zpráv_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_2e7e1;Data kontaktů_2e7e1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_33e0e;Data kontaktů_33e0e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_40e2c;Data kontaktů_40e2c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_2e7e1;Úložiště uživatelských dat_2e7e1; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_33e0e;Úložiště uživatelských dat_33e0e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_40e2c;Úložiště uživatelských dat_40e2c; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 7.1.2016
Čas skenování: 19:55
Protokol: 1.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.01.07.05
Databáze rootkitů: v2016.01.05.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x86
Souborový systém: NTFS
Uživatel: Karlos
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 345116
Uplynulý čas: 15 min, 39 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 7.1.2016
Čas skenování: 19:55
Protokol: 1.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.01.07.05
Databáze rootkitů: v2016.01.05.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x86
Souborový systém: NTFS
Uživatel: Karlos
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 345116
Uplynulý čas: 15 min, 39 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Dne 4.1.2016 jsem tímto programem již jeden sken prováděl a výpis je takový, jeden soubor je v karanténě.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 4.1.2016
Čas skenování: 22:01
Protokol: 2.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.01.04.05
Databáze rootkitů: v2015.12.26.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x86
Souborový systém: NTFS
Uživatel: Karlos
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 332739
Uplynulý čas: 26 min, 14 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 1
PUP.Optional.OpenCandy, C:\Users\Karlos\Downloads\dx11.exe, Do karantény, [aafb65d07029cc6a4a943b7ad82cab55],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 4.1.2016
Čas skenování: 22:01
Protokol: 2.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.01.04.05
Databáze rootkitů: v2015.12.26.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x86
Souborový systém: NTFS
Uživatel: Karlos
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 332739
Uplynulý čas: 26 min, 14 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 1
PUP.Optional.OpenCandy, C:\Users\Karlos\Downloads\dx11.exe, Do karantény, [aafb65d07029cc6a4a943b7ad82cab55],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Zkusíme tyto skeny:
1. Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
a
2. Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
1. Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
;autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
a
2. Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Karlos on źt 07.01.2016 at 20:45:42,96.
Microsoft Windows 10 Home 10.0.10586 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Karlos\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
7.1.2016 20:48:09 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\Program Files\MSXML 4.0 deleted successfully
C:\PROGRA~2\Comms deleted successfully
C:\PROGRA~2\SoftwareDistribution deleted successfully
C:\Users\Karlos\AppData\Local\ActiveSync deleted successfully
C:\Users\Karlos\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Karlos\AppData\Local\EmieSiteList deleted successfully
C:\Users\Karlos\AppData\Local\EmieUserList deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-972812610-3380350732-3349330492-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82A76710-4F98-4957-92BE-99648A4E2475} deleted successfully
HKEY_USERS\S-1-5-21-972812610-3380350732-3349330492-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82A76710-4F98-4957-92BE-99648A4E2475} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-972812610-3380350732-3349330492-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{82A76710-4F98-4957-92BE-99648A4E2475} deleted successfully
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\PROGRA~2\DivX deleted
C:\Users\Karlos\.android deleted
C:\Program Files\GUTD144.tmp deleted
C:\Program Files\GUMD143.tmp deleted
C:\PROGRA~2\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\System32\AI_RecycleBin deleted
"C:\Users\Karlos\AppData\Roaming\rmi" deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [06.04.2014 20:41]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [06.04.2014 20:41]
==== Chromium Look ======================
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bmkckgpgekmanipelfidlhmkfcjicion - No path found[]
Seznam Lištička - Email - Karlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Seznam LištiÄŤka - SlovnĂk - Karlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Summer Fields 2 - Karlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkllododjcgdppaocnhcjpncemnmmfon
Seznam Lištička - Rychlá volba - Karlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
HKCU\SearchScopes\{3F9F85B0-E7A9-46CE-992E-8D73F6DFB85B} - http://search.seznam.cz/?q={searchTerms ... arch_13415
HKCU\SearchScopes\{47770628-AC74-4247-A153-6792A452EA47} - http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
HKCU\SearchScopes\{4E43AA15-CD8E-4117-A419-02E4A2B80967} - http://www.novinky.cz/hledej?w={searchT ... arch_13415
HKCU\SearchScopes\{94475320-4CAE-4C50-AB87-5AAA66B88443} - http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
HKCU\SearchScopes\{95853BFD-71DF-4ED9-B0E9-38F6951ED20B} - http://www.mapy.cz/?query={searchTerms} ... arch_13415
HKCU\SearchScopes\{B9074B3C-848F-4BA1-8661-B936D167AD5B} - http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
HKCU\SearchScopes\{BC212AB4-BE76-47F6-A021-932AF44B0318} - http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
HKCU\SearchScopes\{BCF570A1-A733-415E-B8B0-39F4D38A4141} - http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
HKCU\SearchScopes\{D39899E6-706F-4194-BADF-2BB049760E61} - http://encyklopedie.seznam.cz/search?q= ... arch_13415
==== Reset Google Chrome ======================
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF405ffb.TMP will be reset at reboot
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
==== Empty IE Cache ======================
C:\Users\Karlos\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Karlos\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Karlos\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Karlos\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=82 folders=22 20438598 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Karlos\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF405ffb.TMP" not found
==== EOF on źt 07.01.2016 at 21:24:56,68 ======================
Tool run by Karlos on źt 07.01.2016 at 20:45:42,96.
Microsoft Windows 10 Home 10.0.10586 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Karlos\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
7.1.2016 20:48:09 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\Program Files\MSXML 4.0 deleted successfully
C:\PROGRA~2\Comms deleted successfully
C:\PROGRA~2\SoftwareDistribution deleted successfully
C:\Users\Karlos\AppData\Local\ActiveSync deleted successfully
C:\Users\Karlos\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Karlos\AppData\Local\EmieSiteList deleted successfully
C:\Users\Karlos\AppData\Local\EmieUserList deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-972812610-3380350732-3349330492-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82A76710-4F98-4957-92BE-99648A4E2475} deleted successfully
HKEY_USERS\S-1-5-21-972812610-3380350732-3349330492-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82A76710-4F98-4957-92BE-99648A4E2475} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-972812610-3380350732-3349330492-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{82A76710-4F98-4957-92BE-99648A4E2475} deleted successfully
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\PROGRA~2\DivX deleted
C:\Users\Karlos\.android deleted
C:\Program Files\GUTD144.tmp deleted
C:\Program Files\GUMD143.tmp deleted
C:\PROGRA~2\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\System32\AI_RecycleBin deleted
"C:\Users\Karlos\AppData\Roaming\rmi" deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [06.04.2014 20:41]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [06.04.2014 20:41]
==== Chromium Look ======================
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bmkckgpgekmanipelfidlhmkfcjicion - No path found[]
Seznam Lištička - Email - Karlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Seznam LištiÄŤka - SlovnĂk - Karlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Summer Fields 2 - Karlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkllododjcgdppaocnhcjpncemnmmfon
Seznam Lištička - Rychlá volba - Karlos\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkID= ... 6B4C2C4443"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
HKCU\SearchScopes\{3F9F85B0-E7A9-46CE-992E-8D73F6DFB85B} - http://search.seznam.cz/?q={searchTerms ... arch_13415
HKCU\SearchScopes\{47770628-AC74-4247-A153-6792A452EA47} - http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
HKCU\SearchScopes\{4E43AA15-CD8E-4117-A419-02E4A2B80967} - http://www.novinky.cz/hledej?w={searchT ... arch_13415
HKCU\SearchScopes\{94475320-4CAE-4C50-AB87-5AAA66B88443} - http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
HKCU\SearchScopes\{95853BFD-71DF-4ED9-B0E9-38F6951ED20B} - http://www.mapy.cz/?query={searchTerms} ... arch_13415
HKCU\SearchScopes\{B9074B3C-848F-4BA1-8661-B936D167AD5B} - http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
HKCU\SearchScopes\{BC212AB4-BE76-47F6-A021-932AF44B0318} - http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
HKCU\SearchScopes\{BCF570A1-A733-415E-B8B0-39F4D38A4141} - http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
HKCU\SearchScopes\{D39899E6-706F-4194-BADF-2BB049760E61} - http://encyklopedie.seznam.cz/search?q= ... arch_13415
==== Reset Google Chrome ======================
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF405ffb.TMP will be reset at reboot
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
==== Empty IE Cache ======================
C:\Users\Karlos\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Karlos\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Karlos\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Karlos\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=82 folders=22 20438598 bytes)
==== Empty Temp Folders ======================
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\Users\Karlos\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF405ffb.TMP" not found
==== EOF on źt 07.01.2016 at 21:24:56,68 ======================
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 10 Home x86
Ran by Karlos (Administrator) on źt 07.01.2016 at 21:31:17,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 6
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bgjpfhpjcgdppjbgnpnjllokbmcdllig_0.localstorage-journal (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bgjpfhpjcgdppjbgnpnjllokbmcdllig_0.localstorage (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_blmojkbhnkkphngknkmgccmlenfaelkd_0.localstorage-journal (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_blmojkbhnkkphngknkmgccmlenfaelkd_0.localstorage (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage-journal (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage (File)
Registry: 1
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3F9F85B0-E7A9-46CE-992E-8D73F6DFB85B} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 07.01.2016 at 21:34:18,49
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 10 Home x86
Ran by Karlos (Administrator) on źt 07.01.2016 at 21:31:17,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 6
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bgjpfhpjcgdppjbgnpnjllokbmcdllig_0.localstorage-journal (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bgjpfhpjcgdppjbgnpnjllokbmcdllig_0.localstorage (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_blmojkbhnkkphngknkmgccmlenfaelkd_0.localstorage-journal (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_blmojkbhnkkphngknkmgccmlenfaelkd_0.localstorage (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage-journal (File)
Successfully deleted: C:\Users\Karlos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage (File)
Registry: 1
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3F9F85B0-E7A9-46CE-992E-8D73F6DFB85B} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 07.01.2016 at 21:34:18,49
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Jak to vypadá nyní?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
karelstepanik
- Návštěvník
- Příspěvky: 39
- Registrován: 20 úno 2008 19:56
Re: zpomalení PC, reklama s čínskými znaky v pravém dolním r
Nerad bych to zakřiknul, ale reklama se zatím neobjevila 
Přispějete na provoz fóra?