log je moc dlouhej dávám na dvakrát
Logfile of random's system information tool 1.10 (written by random/random)
Run by Lubo at 2016-01-15 15:23:09
Microsoft Windows 10 Home
System drive C: has 199 MB (0%) free of 912 GB
Total RAM: 8082 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:23:12, on 15. 1. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe
C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\7\plugin.exe
C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\3\plugin.exe
C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\12\plugin.exe
C:\Program Files\trend micro\Lubo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Outrageous Deal - {4e2d2bf0-159f-4257-acf0-b1f29b376fa0} - C:\Program Files (x86)\Outrageous Deal\Extensions\4e2d2bf0-159f-4257-acf0-b1f29b376fa0.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [ApowersoftScreenRecorder] C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe /autoStart
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3363592213-3403915979-3187532261-1001\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3363592213-3403915979-3187532261-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Digital Wave Ltd. - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Service Mgr OutrageousDeal - Unknown owner - C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugincontainer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Update Mgr OutrageousDeal - Unknown owner - C:\Program Files (x86)\Common Files\65ad47d7-2e27-4a5c-b238-26643fdaeb98\updater.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 13318 bytes
======Listing Processes======
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
dost zpomalený NT vyskakující okna
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: dost zpomalený NT vyskakující okna
druhá část
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-81d0c45c-ed71-46ca-b46c-51cf7a4e136d -SystemEventPortName:HostProcess-2496fdcf-465c-401d-b876-bf6049e5a9ef -IoCancelEventPortName:HostProcess-17ed72aa-376a-4aba-84cb-aa5b4269d943 -NonStateChangingEventPortName:HostProcess-a20bed08-efb1-4e26-8e81-4aa793ab361f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a1a29c54-2f43-45b0-9de5-00049ddf2150 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /s "NCO" /m "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\diMaster.dll" /prefetch:1
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /c /a /s UserSession
sihost.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe" /LOGON
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"fontdrvhost.exe"
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\InstallAgent.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "0x1974_0x197c_0x61f4616e"
"C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe" --type=renderer --disable-breakpad --disable-desktop-notifications --disable-logging --disable-speech-input --lang=en-US --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/11/OneClickSignIn/Standard/Prefetch/ContentPrefetchPrefetchOn/Prerender/PrerenderMulti/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V1/SpdyCwnd/cwnd16/SpeculativePrefetchingLearning/SpeculativePrefetchingLearningEnabled/Test0PercentDefault/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warm_socket/ --noerrdialogs --disable-client-side-phishing-detection --disable-bundled-ppapi-flash --channel="6568.1.1606339696\1455747294" /prefetch:3
"C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe"
taskhostw.exe
dashost.exe {4b120aaa-734a-4428-bb24973386c8a422}
"C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe"
C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\WINDOWS\system32\rundll32.exe" -localserver 22d8c27b-47a1-48d1-ad08-7da7abd79617
"C:\Program Files (x86)\Common Files\65ad47d7-2e27-4a5c-b238-26643fdaeb98\updater.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="2852.0.822028996\679765010" "C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 2852 "\\.\pipe\gecko-crash-server-pipe.2852" plugin
"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe" --proxy-stub-channel=Flash7488.5BBEA0B8.13012 --host-broker-channel=Flash7488.5BBEA0B8.8579 --host-pid=7488 --host-npapi-version=28 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_20_0_0_267.dll"
"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe" --channel=7124.0018F4B4.1249757464 --proxy-stub-channel=Flash7488.5BBEA0B8.13012 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_20_0_0_267.dll" --host-npapi-version=28 --type=renderer
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\Program Files\WindowsApps\Microsoft.XboxApp_11.13.6008.0_x64__8wekyb3d8bbwe\XboxApp.exe" -ServerName:Microsoft.XboxApp.AppXf18qzvvf02y898dj8d1frhp2562vbpn5.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe\HxMail.exe" -ServerName:microsoft.windowslive.mail.AppX7fgs1v31b27fq9zen50wdw83aappcatm.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15731.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugincontainer.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\8\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\7\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\10\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\7\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\3\plugin.exe" u
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\12\plugin.exe" u
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\3\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\5\plugin.exe" u
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\12\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\2\plugin.exe" u
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.36020.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\WINDOWS\system32\NOTEPAD.EXE" C:\rsit\info.txt
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Lubo\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default\extensions\
{a00bef25-f21a-4539-adbb-b179b29e2b92}
C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default\searchplugins\
ask-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-05 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]
Norton Identity Protection - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll [2015-06-26 932152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4e2d2bf0-159f-4257-acf0-b1f29b376fa0}]
Outrageous Deal - C:\Program Files (x86)\Outrageous Deal\Extensions\4e2d2bf0-159f-4257-acf0-b1f29b376fa0.dll [2016-01-15 144072]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-04-07 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-05 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]
Norton Identity Protection - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll [2015-06-26 664888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-07 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 6141528]
{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll [2015-06-26 932152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]
{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll [2015-06-26 664888]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-02-19 17111056]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-02-19 193008]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-08-11 1703424]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-06-03 3944136]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2013-04-09 241152]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-03-25 31682144]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-12-23 833240]
"ApowersoftScreenRecorder"=C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe /autoStart []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2015-06-12 561672]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07 335232]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-05 7021880]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2014-01-17 1284680]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2014-01-15 438888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableCAD"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-15 15:20:55 ----D---- C:\rsit
2016-01-15 15:20:55 ----D---- C:\Program Files\trend micro
2016-01-15 09:22:51 ----D---- C:\Users\Lubo\AppData\Roaming\DVDVideoSoft
2016-01-15 09:22:46 ----D---- C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98
2016-01-15 09:22:45 ----D---- C:\Program Files (x86)\Outrageous Deal
2016-01-15 09:22:39 ----D---- C:\Program Files (x86)\DVDVideoSoft
2016-01-15 09:22:32 ----D---- C:\Users\Lubo\AppData\Roaming\RPEng
2016-01-15 09:04:41 ----D---- C:\Output
2016-01-13 10:54:08 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-13 10:53:47 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-13 10:53:44 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 10:53:44 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-01-13 10:52:30 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-01-13 10:52:19 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-13 10:52:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-01-13 10:52:17 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-01-13 10:52:17 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-01-13 10:52:17 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-01-13 10:52:17 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-13 10:52:16 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 10:52:16 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-01-13 10:52:16 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-13 10:52:15 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-01-13 10:52:15 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 10:52:15 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 10:52:14 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-01-13 10:52:14 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-01-13 10:52:14 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 10:52:14 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 10:52:14 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 10:52:13 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-13 10:52:11 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-01-13 10:52:11 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-01-13 10:52:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-13 10:52:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-01-13 10:52:10 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-01-13 10:52:10 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-01-13 10:52:10 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-01-13 10:52:09 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-01-13 10:52:09 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-13 10:52:08 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 10:52:08 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 10:52:07 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-13 10:52:06 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2016-01-13 10:52:06 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-01-13 10:52:06 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-01-13 10:52:05 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-01-13 10:52:04 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\winload.exe
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-13 10:52:03 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-01-13 10:52:03 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 10:52:03 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 10:52:02 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\usermgrcli.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\ProximityCommon.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-07 16:31:37 ----D---- C:\Program Files (x86)\GUM7BC1.tmp
2016-01-07 16:11:14 ----D---- C:\Program Files (x86)\GUMD21B.tmp
2016-01-07 15:23:34 ----D---- C:\ProgramData\Google
2016-01-07 15:23:31 ----D---- C:\Program Files\Google
2016-01-07 15:23:02 ----D---- C:\ProgramData\Package Cache
2016-01-07 10:01:02 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-01-06 17:00:13 ----D---- C:\Users\Lubo\AppData\Roaming\OBS
2016-01-06 17:00:03 ----D---- C:\Program Files\OBS
2016-01-06 17:00:01 ----D---- C:\Program Files (x86)\OBS
2016-01-06 16:59:30 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2016-01-06 16:59:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2016-01-06 16:59:29 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2016-01-06 16:59:27 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2016-01-06 16:59:27 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2016-01-06 16:59:27 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2016-01-06 16:59:27 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2016-01-06 16:59:22 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2016-01-06 16:59:22 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2016-01-06 16:59:22 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2016-01-06 16:59:22 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2016-01-06 16:59:21 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2016-01-06 16:59:21 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2016-01-06 16:59:21 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2016-01-06 16:59:21 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2016-01-06 16:59:12 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2016-01-06 16:59:12 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2016-01-06 16:59:09 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2016-01-06 16:59:09 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2016-01-06 16:59:09 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2016-01-06 16:59:09 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2016-01-06 16:59:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2016-01-06 16:59:07 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2016-01-06 16:59:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2016-01-06 16:59:04 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2016-01-06 16:59:01 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2016-01-06 16:59:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2016-01-06 16:59:01 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2016-01-06 16:59:01 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2016-01-06 16:58:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2016-01-06 16:58:59 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\system32\d3dx10.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2016-01-06 16:58:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2016-01-06 16:58:56 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2016-01-06 16:58:54 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2016-01-06 16:58:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2016-01-06 16:58:54 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2016-01-06 16:58:54 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2016-01-06 16:58:53 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2016-01-06 16:58:53 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2016-01-06 16:58:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2016-01-06 16:58:52 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2016-01-06 16:58:50 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2016-01-06 16:58:50 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2016-01-06 16:58:50 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2016-01-06 16:58:50 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2016-01-06 16:58:49 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2016-01-06 16:58:49 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2016-01-06 16:58:48 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2016-01-06 16:58:48 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2016-01-06 16:58:48 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2016-01-06 16:58:48 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2016-01-06 16:58:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2016-01-06 16:58:47 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2016-01-06 16:56:46 ----HD---- C:\WINDOWS\msdownld.tmp
2016-01-06 16:56:40 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-01-06 16:51:55 ----D---- C:\Users\Lubo\AppData\Roaming\Apowersoft
2016-01-04 10:09:52 ----D---- C:\WINDOWS\system32\drivers\NSTx64
2016-01-04 10:09:47 ----D---- C:\Program Files (x86)\Norton Identity Safe
2015-12-29 15:51:15 ----D---- C:\WINDOWS\Minidump
2015-12-27 10:35:15 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-26 13:35:45 ----SHD---- C:\Recovery
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\services.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-26 13:29:58 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-26 13:29:58 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-26 13:25:38 ----A---- C:\WINDOWS\system32\prm0005.dll
2015-12-26 13:25:15 ----A---- C:\WINDOWS\system32\perfi005.dat
2015-12-26 13:25:15 ----A---- C:\WINDOWS\system32\perfh005.dat
2015-12-26 13:25:15 ----A---- C:\WINDOWS\system32\perfd005.dat
2015-12-26 13:25:15 ----A---- C:\WINDOWS\system32\perfc005.dat
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2015-12-26 13:24:37 ----D---- C:\WINDOWS\SYSWOW64\cs
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-12-26 13:24:34 ----D---- C:\WINDOWS\system32\cs
2015-12-26 13:24:33 ----D---- C:\WINDOWS\cs-CZ
2015-12-26 13:13:28 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-26 13:09:28 ----D---- C:\Program Files\Reference Assemblies
2015-12-26 13:09:28 ----D---- C:\Program Files\MSBuild
2015-12-26 13:09:28 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-26 13:09:28 ----D---- C:\Program Files (x86)\MSBuild
2015-12-26 13:08:40 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-26 13:08:40 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-26 13:08:40 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 13:08:34 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-26 13:08:34 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-26 13:08:34 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 05:36:53 ----SHD---- C:\ProgramData\Templates
2015-12-26 05:36:52 ----SHD---- C:\ProgramData\Start Menu
2015-12-26 05:36:52 ----SHD---- C:\ProgramData\Documents
2015-12-26 05:36:52 ----SHD---- C:\ProgramData\Desktop
2015-12-26 05:36:52 ----SHD---- C:\ProgramData\Application Data
2015-12-26 05:04:23 ----ASH---- C:\hiberfil.sys
2015-12-26 04:48:55 ----SD---- C:\Users\Lubo\AppData\Roaming\Microsoft
2015-12-26 04:45:03 ----D---- C:\Program Files (x86)\USB Camera
2015-12-26 04:45:00 ----D---- C:\Program Files\Common Files\Atheros
2015-12-26 04:44:50 ----D---- C:\WINDOWS\SYSWOW64\NV
2015-12-26 04:44:50 ----D---- C:\WINDOWS\system32\NV
2015-12-26 04:44:47 ----D---- C:\ProgramData\NVIDIA
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2015-12-26 04:44:39 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2015-12-26 04:44:32 ----HD---- C:\Program Files (x86)\Uninstall Information
2015-12-26 04:44:10 ----D---- C:\ProgramData\NVIDIA Corporation
2015-12-26 04:43:55 ----D---- C:\Program Files\NVIDIA Corporation
2015-12-26 04:43:55 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-12-26 04:43:35 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2015-12-26 04:43:35 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2015-12-26 04:43:28 ----D---- C:\Program Files\Intel
2015-12-26 04:43:02 ----D---- C:\Program Files\Synaptics
2015-12-26 04:40:25 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-26 04:38:36 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-26 04:37:51 ----D---- C:\WINDOWS\Prefetch
2015-12-26 04:36:53 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-26 04:36:37 ----ASH---- C:\swapfile.sys
2015-12-23 17:26:34 ----D---- C:\Users\Lubo\AppData\Roaming\M-Photo
======List of files/folders modified in the last 1 month======
2016-01-15 15:20:55 ----RD---- C:\Program Files
2016-01-15 14:33:34 ----D---- C:\WINDOWS\Temp
2016-01-15 14:28:01 ----D---- C:\WINDOWS\system32\sru
2016-01-15 14:22:31 ----D---- C:\WINDOWS\system32\config
2016-01-15 14:21:57 ----SHD---- C:\System Volume Information
2016-01-15 14:19:50 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-15 13:01:55 ----D---- C:\Users\Lubo\AppData\Roaming\vlc
2016-01-15 12:06:42 ----D---- C:\WINDOWS\system32\Tasks
2016-01-15 09:48:26 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-15 09:22:47 ----D---- C:\Program Files (x86)\Common Files
2016-01-15 09:22:46 ----HD---- C:\ProgramData
2016-01-15 09:22:45 ----RD---- C:\Program Files (x86)
2016-01-15 08:42:30 ----D---- C:\WINDOWS\CbsTemp
2016-01-15 08:31:04 ----D---- C:\WINDOWS\AppReadiness
2016-01-15 08:24:38 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-01-15 08:24:38 ----D---- C:\WINDOWS\System32
2016-01-14 18:44:48 ----D---- C:\WINDOWS\INF
2016-01-14 18:39:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-14 18:33:36 ----D---- C:\WINDOWS\WinSxS
2016-01-14 18:31:59 ----D---- C:\WINDOWS\system32\drivers
2016-01-14 18:29:20 ----D---- C:\WINDOWS\SysWOW64
2016-01-14 18:29:19 ----D---- C:\WINDOWS\system32\Boot
2016-01-14 18:29:19 ----D---- C:\WINDOWS\system32\appraiser
2016-01-14 18:29:17 ----D---- C:\WINDOWS\AppPatch
2016-01-13 13:26:36 ----D---- C:\WINDOWS\system32\MRT
2016-01-13 13:26:35 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-13 10:59:25 ----SHD---- C:\WINDOWS\Installer
2016-01-13 10:59:24 ----HD---- C:\Config.Msi
2016-01-13 10:58:03 ----HD---- C:\Program Files\WindowsApps
2016-01-13 10:47:38 ----D---- C:\WINDOWS\system32\catroot2
2016-01-08 16:24:06 ----D---- C:\Windows
2016-01-08 16:21:24 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-07 15:31:14 ----D---- C:\WINDOWS\Tasks
2016-01-07 15:23:27 ----D---- C:\Program Files (x86)\Google
2016-01-06 16:58:52 ----RSD---- C:\WINDOWS\assembly
2016-01-06 16:56:40 ----D---- C:\WINDOWS\Logs
2016-01-06 16:30:59 ----D---- C:\ProgramData\Norton
2016-01-04 19:11:34 ----D---- C:\WINDOWS\rescache
2016-01-04 10:13:21 ----HD---- C:\WINDOWS\ELAMBKUP
2016-01-04 10:13:20 ----D---- C:\Program Files\Common Files
2016-01-04 10:09:41 ----D---- C:\Program Files (x86)\NortonInstaller
2016-01-04 10:01:53 ----D---- C:\Program Files\Internet Explorer
2016-01-04 10:01:53 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-03 21:34:39 ----D---- C:\ProgramData\CanonIJPLM
2016-01-03 02:40:25 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-28 21:01:28 ----D---- C:\WINDOWS\system32\WDI
2015-12-28 09:05:22 ----D---- C:\WINDOWS\system32\restore
2015-12-28 08:39:45 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-28 08:34:39 ----D---- C:\WINDOWS\system32\NDF
2015-12-27 10:14:53 ----D---- C:\WINDOWS\debug
2015-12-27 09:32:53 ----D---- C:\WINDOWS\appcompat
2015-12-26 13:30:51 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-26 13:30:51 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-12-26 13:30:51 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-26 13:30:51 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\migration
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\en-US
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\Dism
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-26 13:30:51 ----D---- C:\WINDOWS\Provisioning
2015-12-26 13:30:51 ----D---- C:\WINDOWS\bcastdvr
2015-12-26 13:24:38 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-12-26 13:24:38 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\wbem
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2015-12-26 13:24:37 ----SD---- C:\WINDOWS\system32\F12
2015-12-26 13:24:37 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-12-26 13:24:37 ----D---- C:\WINDOWS\SYSWOW64\Com
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\winrm
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\WCN
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\slmgr
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\MUI
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\migwiz
2015-12-26 13:24:34 ----D---- C:\WINDOWS\system32\Com
2015-12-26 13:24:34 ----D---- C:\WINDOWS\servicing
2015-12-26 13:24:34 ----D---- C:\WINDOWS\PolicyDefinitions
2015-12-26 13:24:33 ----D---- C:\WINDOWS\IME
2015-12-26 13:24:33 ----D---- C:\Program Files\Windows Photo Viewer
2015-12-26 13:24:33 ----D---- C:\Program Files\Windows Media Player
2015-12-26 13:24:33 ----D---- C:\Program Files\Windows Journal
2015-12-26 13:24:33 ----D---- C:\Program Files\Windows Defender
2015-12-26 13:24:33 ----D---- C:\Program Files\Common Files\System
2015-12-26 13:24:33 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-12-26 13:24:33 ----D---- C:\Program Files (x86)\Windows Media Player
2015-12-26 13:24:33 ----D---- C:\Program Files (x86)\Windows Defender
2015-12-26 09:30:05 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-26 09:00:20 ----RD---- C:\WINDOWS\PrintDialog
2015-12-26 09:00:18 ----RD---- C:\WINDOWS\MiracastView
2015-12-26 08:59:46 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-26 08:59:04 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-12-26 05:36:26 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-26 05:36:16 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-26 05:30:33 ----D---- C:\WINDOWS\Registration
2015-12-26 05:23:16 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-26 05:21:59 ----SD---- C:\ProgramData\Microsoft
2015-12-26 05:21:55 ----RSD---- C:\WINDOWS\Media
2015-12-26 05:21:46 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-26 05:13:07 ----D---- C:\WINDOWS\system32\wbem
2015-12-26 05:03:15 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-26 05:03:15 ----D---- C:\WINDOWS\SYSWOW64\bitstreams
2015-12-26 05:03:15 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2015-12-26 05:03:15 ----D---- C:\WINDOWS\system32\STRING
2015-12-26 05:03:14 ----RSD---- C:\WINDOWS\Fonts
2015-12-26 05:03:06 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2015-12-26 05:03:05 ----D---- C:\Program Files\Dolby Digital Plus
2015-12-26 04:55:54 ----D---- C:\WINDOWS\twain_32
2015-12-26 04:55:53 ----D---- C:\WINDOWS\SYSWOW64\spool
2015-12-26 04:55:48 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-12-26 04:55:48 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-12-26 04:55:48 ----D---- C:\WINDOWS\system32\spool
2015-12-26 04:55:41 ----D---- C:\WINDOWS\system32\oobe
2015-12-26 04:55:40 ----D---- C:\WINDOWS\system32\LSC
2015-12-26 04:55:40 ----D---- C:\WINDOWS\system32\InputMethod
2015-12-26 04:55:37 ----D---- C:\WINDOWS\System
2015-12-26 04:55:36 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-26 04:55:35 ----D---- C:\WINDOWS\OCR
2015-12-26 04:55:29 ----D---- C:\WINDOWS\InputMethod
2015-12-26 04:55:21 ----D---- C:\WINDOWS\ADFS
2015-12-26 04:54:33 ----RD---- C:\Users
2015-12-26 04:54:33 ----D---- C:\ProgramData\USOPrivate
2015-12-26 04:54:22 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-26 04:54:09 ----D---- C:\Program Files\Windows Mail
2015-12-26 04:54:05 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-26 04:53:49 ----D---- C:\WINDOWS\system32\Recovery
2015-12-26 04:47:52 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-26 04:46:59 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-26 04:44:39 ----D---- C:\WINDOWS\Help
2015-12-26 04:37:15 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-23 20:12:40 ----D---- C:\MCL
2015-12-23 20:12:39 ----A---- C:\WINDOWS\SYSWOW64\FOTOKNIHY_FOTOKNIHY_uninstaller.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-12-05 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-12-05 273784]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2014-02-19 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-07-23 31376]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-12-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-12-05 1055560]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-12-19 451040]
R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\WINDOWS\system32\drivers\NSTx64\7DE070B0.02A\ccSetx64.sys [2013-09-27 162392]
R1 dtsoftbus01;@oem40.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-26 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-12-05 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-12-19 97648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-12-05 155304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 ACPIVPC;@oem1.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-02-19 35600]
R3 AmUStor;@oem8.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2013-06-25 109336]
R3 athr;@oem42.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw10x.sys [2015-05-21 4310064]
R3 BTATH_BUS;@oem18.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-09-07 34384]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2015-03-09 599240]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 84992]
R3 ElcMouLFlt;ELECOM USB Mouse Lower Filter Driver; C:\WINDOWS\System32\drivers\ElcMouLFlt.sys [2015-09-11 28648]
R3 ElcMouUFlt;ELECOM USB Mouse Upper Filter Driver; C:\WINDOWS\System32\drivers\ElcMouUFlt.sys [2015-09-11 27624]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-17 3797424]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem47.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 L1C;@oem39.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2013-07-18 130248]
R3 MarvinBus;@oem3.inf,%MarvinBus.SVCDESC%;Pinnacle Marvin Bus 64; C:\WINDOWS\System32\drivers\MarvinBus64.sys [2005-09-23 261120]
R3 MEIx64;@oem15.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-07-23 11142984]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-06-03 42696]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2013-08-11 551936]
R3 SynTP;@oem13.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-06-03 613576]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 athur;@oem33.inf,%ATHR.Service.DispName%;Qualcomm Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\System32\drivers\athuw8x.sys [2013-06-02 2919936]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 953856]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-26 117248]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-05 226440]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [2015-12-24 388968]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-17 330136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 NCO;Norton Identity Safe; C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe [2015-03-05 131144]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-07-23 937800]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-16 1914656]
R2 OneSyncSvc_412dc;Sync Host_412dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 Service Mgr OutrageousDeal;Service Mgr OutrageousDeal; C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugincontainer.exe [2016-01-15 776928]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-11 338944]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-06-03 249032]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-17 291744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-24 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_412dc;Contact Data_412dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-07 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_202f259;Sync Host_202f259; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2b7119;Sync Host_2b7119; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_409b82;Sync Host_409b82; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_43683;Sync Host_43683; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4c6585;Sync Host_4c6585; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_9667f7;Sync Host_9667f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_aefbafa;Sync Host_aefbafa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-10-07 654848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-07 144200]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-10-16 272776]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_202f259;MessagingService_202f259; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2b7119;MessagingService_2b7119; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_409b82;MessagingService_409b82; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_412dc;MessagingService_412dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_43683;MessagingService_43683; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4c6585;MessagingService_4c6585; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_9667f7;MessagingService_9667f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_aefbafa;MessagingService_aefbafa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-01-07 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_202f259;Contact Data_202f259; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2b7119;Contact Data_2b7119; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_409b82;Contact Data_409b82; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_43683;Contact Data_43683; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4c6585;Contact Data_4c6585; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_9667f7;Contact Data_9667f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_aefbafa;Contact Data_aefbafa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-81d0c45c-ed71-46ca-b46c-51cf7a4e136d -SystemEventPortName:HostProcess-2496fdcf-465c-401d-b876-bf6049e5a9ef -IoCancelEventPortName:HostProcess-17ed72aa-376a-4aba-84cb-aa5b4269d943 -NonStateChangingEventPortName:HostProcess-a20bed08-efb1-4e26-8e81-4aa793ab361f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a1a29c54-2f43-45b0-9de5-00049ddf2150 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /s "NCO" /m "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\diMaster.dll" /prefetch:1
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /c /a /s UserSession
sihost.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe" /LOGON
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"fontdrvhost.exe"
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\InstallAgent.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "0x1974_0x197c_0x61f4616e"
"C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe" --type=renderer --disable-breakpad --disable-desktop-notifications --disable-logging --disable-speech-input --lang=en-US --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/11/OneClickSignIn/Standard/Prefetch/ContentPrefetchPrefetchOn/Prerender/PrerenderMulti/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V1/SpdyCwnd/cwnd16/SpeculativePrefetchingLearning/SpeculativePrefetchingLearningEnabled/Test0PercentDefault/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warm_socket/ --noerrdialogs --disable-client-side-phishing-detection --disable-bundled-ppapi-flash --channel="6568.1.1606339696\1455747294" /prefetch:3
"C:\Users\Lubo\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe"
taskhostw.exe
dashost.exe {4b120aaa-734a-4428-bb24973386c8a422}
"C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe"
C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\WINDOWS\system32\rundll32.exe" -localserver 22d8c27b-47a1-48d1-ad08-7da7abd79617
"C:\Program Files (x86)\Common Files\65ad47d7-2e27-4a5c-b238-26643fdaeb98\updater.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="2852.0.822028996\679765010" "C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 2852 "\\.\pipe\gecko-crash-server-pipe.2852" plugin
"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe" --proxy-stub-channel=Flash7488.5BBEA0B8.13012 --host-broker-channel=Flash7488.5BBEA0B8.8579 --host-pid=7488 --host-npapi-version=28 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_20_0_0_267.dll"
"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_20_0_0_267.exe" --channel=7124.0018F4B4.1249757464 --proxy-stub-channel=Flash7488.5BBEA0B8.13012 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_20_0_0_267.dll" --host-npapi-version=28 --type=renderer
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\Program Files\WindowsApps\Microsoft.XboxApp_11.13.6008.0_x64__8wekyb3d8bbwe\XboxApp.exe" -ServerName:Microsoft.XboxApp.AppXf18qzvvf02y898dj8d1frhp2562vbpn5.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe\HxMail.exe" -ServerName:microsoft.windowslive.mail.AppX7fgs1v31b27fq9zen50wdw83aappcatm.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6525.42271.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15731.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugincontainer.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\8\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\7\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\10\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\7\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\3\plugin.exe" u
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\12\plugin.exe" u
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\3\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\5\plugin.exe" u
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\12\plugin.exe"
"C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugins\2\plugin.exe" u
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.36020.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\WINDOWS\system32\NOTEPAD.EXE" C:\rsit\info.txt
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Lubo\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default\extensions\
{a00bef25-f21a-4539-adbb-b179b29e2b92}
C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default\searchplugins\
ask-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-05 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]
Norton Identity Protection - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll [2015-06-26 932152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4e2d2bf0-159f-4257-acf0-b1f29b376fa0}]
Outrageous Deal - C:\Program Files (x86)\Outrageous Deal\Extensions\4e2d2bf0-159f-4257-acf0-b1f29b376fa0.dll [2016-01-15 144072]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-04-07 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-05 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]
Norton Identity Protection - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll [2015-06-26 664888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-07 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 6141528]
{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll [2015-06-26 932152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]
{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll [2015-06-26 664888]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-02-19 17111056]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-02-19 193008]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-08-11 1703424]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-06-03 3944136]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2013-04-09 241152]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-03-25 31682144]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-12-23 833240]
"ApowersoftScreenRecorder"=C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe /autoStart []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2015-06-12 561672]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07 335232]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-05 7021880]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2014-01-17 1284680]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2014-01-15 438888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableCAD"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-15 15:20:55 ----D---- C:\rsit
2016-01-15 15:20:55 ----D---- C:\Program Files\trend micro
2016-01-15 09:22:51 ----D---- C:\Users\Lubo\AppData\Roaming\DVDVideoSoft
2016-01-15 09:22:46 ----D---- C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98
2016-01-15 09:22:45 ----D---- C:\Program Files (x86)\Outrageous Deal
2016-01-15 09:22:39 ----D---- C:\Program Files (x86)\DVDVideoSoft
2016-01-15 09:22:32 ----D---- C:\Users\Lubo\AppData\Roaming\RPEng
2016-01-15 09:04:41 ----D---- C:\Output
2016-01-13 10:54:08 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-13 10:53:47 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-13 10:53:44 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 10:53:44 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-01-13 10:52:30 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-01-13 10:52:19 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-13 10:52:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-01-13 10:52:17 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-01-13 10:52:17 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-01-13 10:52:17 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-01-13 10:52:17 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-13 10:52:16 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 10:52:16 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-01-13 10:52:16 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-13 10:52:15 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-01-13 10:52:15 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 10:52:15 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 10:52:14 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-01-13 10:52:14 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-01-13 10:52:14 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 10:52:14 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 10:52:14 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 10:52:13 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-13 10:52:12 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-13 10:52:11 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-01-13 10:52:11 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-01-13 10:52:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-13 10:52:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-01-13 10:52:10 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-01-13 10:52:10 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-01-13 10:52:10 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-01-13 10:52:09 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-01-13 10:52:09 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-13 10:52:08 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 10:52:08 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 10:52:07 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 10:52:07 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-13 10:52:06 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2016-01-13 10:52:06 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-01-13 10:52:06 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-01-13 10:52:05 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-01-13 10:52:04 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\winload.exe
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 10:52:04 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-13 10:52:03 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-01-13 10:52:03 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 10:52:03 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 10:52:02 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\usermgrcli.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\SYSWOW64\ProximityCommon.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-01-13 10:52:01 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-07 16:31:37 ----D---- C:\Program Files (x86)\GUM7BC1.tmp
2016-01-07 16:11:14 ----D---- C:\Program Files (x86)\GUMD21B.tmp
2016-01-07 15:23:34 ----D---- C:\ProgramData\Google
2016-01-07 15:23:31 ----D---- C:\Program Files\Google
2016-01-07 15:23:02 ----D---- C:\ProgramData\Package Cache
2016-01-07 10:01:02 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-01-06 17:00:13 ----D---- C:\Users\Lubo\AppData\Roaming\OBS
2016-01-06 17:00:03 ----D---- C:\Program Files\OBS
2016-01-06 17:00:01 ----D---- C:\Program Files (x86)\OBS
2016-01-06 16:59:30 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-01-06 16:59:30 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2016-01-06 16:59:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2016-01-06 16:59:29 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2016-01-06 16:59:28 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2016-01-06 16:59:27 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2016-01-06 16:59:27 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2016-01-06 16:59:27 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2016-01-06 16:59:27 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2016-01-06 16:59:22 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2016-01-06 16:59:22 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2016-01-06 16:59:22 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2016-01-06 16:59:22 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2016-01-06 16:59:21 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2016-01-06 16:59:21 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2016-01-06 16:59:21 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2016-01-06 16:59:21 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2016-01-06 16:59:20 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2016-01-06 16:59:19 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2016-01-06 16:59:18 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2016-01-06 16:59:17 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2016-01-06 16:59:16 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2016-01-06 16:59:15 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2016-01-06 16:59:12 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2016-01-06 16:59:12 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2016-01-06 16:59:11 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2016-01-06 16:59:10 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2016-01-06 16:59:09 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2016-01-06 16:59:09 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2016-01-06 16:59:09 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2016-01-06 16:59:09 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2016-01-06 16:59:08 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2016-01-06 16:59:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2016-01-06 16:59:07 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2016-01-06 16:59:05 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2016-01-06 16:59:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2016-01-06 16:59:04 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2016-01-06 16:59:03 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2016-01-06 16:59:02 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2016-01-06 16:59:01 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2016-01-06 16:59:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2016-01-06 16:59:01 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2016-01-06 16:59:01 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2016-01-06 16:59:00 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2016-01-06 16:58:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2016-01-06 16:58:59 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-01-06 16:58:58 ----A---- C:\WINDOWS\system32\d3dx10.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2016-01-06 16:58:57 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2016-01-06 16:58:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2016-01-06 16:58:56 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2016-01-06 16:58:54 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2016-01-06 16:58:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2016-01-06 16:58:54 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2016-01-06 16:58:54 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2016-01-06 16:58:53 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2016-01-06 16:58:53 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2016-01-06 16:58:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2016-01-06 16:58:52 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2016-01-06 16:58:51 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2016-01-06 16:58:50 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2016-01-06 16:58:50 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2016-01-06 16:58:50 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2016-01-06 16:58:50 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2016-01-06 16:58:49 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2016-01-06 16:58:49 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2016-01-06 16:58:48 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2016-01-06 16:58:48 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2016-01-06 16:58:48 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2016-01-06 16:58:48 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2016-01-06 16:58:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2016-01-06 16:58:47 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2016-01-06 16:56:46 ----HD---- C:\WINDOWS\msdownld.tmp
2016-01-06 16:56:40 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-01-06 16:51:55 ----D---- C:\Users\Lubo\AppData\Roaming\Apowersoft
2016-01-04 10:09:52 ----D---- C:\WINDOWS\system32\drivers\NSTx64
2016-01-04 10:09:47 ----D---- C:\Program Files (x86)\Norton Identity Safe
2015-12-29 15:51:15 ----D---- C:\WINDOWS\Minidump
2015-12-27 10:35:15 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-26 13:35:45 ----SHD---- C:\Recovery
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-26 13:30:03 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-26 13:30:02 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\services.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-26 13:29:59 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-26 13:29:58 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-26 13:29:58 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-26 13:29:53 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-26 13:25:38 ----A---- C:\WINDOWS\system32\prm0005.dll
2015-12-26 13:25:15 ----A---- C:\WINDOWS\system32\perfi005.dat
2015-12-26 13:25:15 ----A---- C:\WINDOWS\system32\perfh005.dat
2015-12-26 13:25:15 ----A---- C:\WINDOWS\system32\perfd005.dat
2015-12-26 13:25:15 ----A---- C:\WINDOWS\system32\perfc005.dat
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2015-12-26 13:24:37 ----D---- C:\WINDOWS\SYSWOW64\cs
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-12-26 13:24:34 ----D---- C:\WINDOWS\system32\cs
2015-12-26 13:24:33 ----D---- C:\WINDOWS\cs-CZ
2015-12-26 13:13:28 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-26 13:09:28 ----D---- C:\Program Files\Reference Assemblies
2015-12-26 13:09:28 ----D---- C:\Program Files\MSBuild
2015-12-26 13:09:28 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-26 13:09:28 ----D---- C:\Program Files (x86)\MSBuild
2015-12-26 13:08:40 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-26 13:08:40 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-26 13:08:40 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 13:08:34 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-26 13:08:34 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-26 13:08:34 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 05:36:53 ----SHD---- C:\ProgramData\Templates
2015-12-26 05:36:52 ----SHD---- C:\ProgramData\Start Menu
2015-12-26 05:36:52 ----SHD---- C:\ProgramData\Documents
2015-12-26 05:36:52 ----SHD---- C:\ProgramData\Desktop
2015-12-26 05:36:52 ----SHD---- C:\ProgramData\Application Data
2015-12-26 05:04:23 ----ASH---- C:\hiberfil.sys
2015-12-26 04:48:55 ----SD---- C:\Users\Lubo\AppData\Roaming\Microsoft
2015-12-26 04:45:03 ----D---- C:\Program Files (x86)\USB Camera
2015-12-26 04:45:00 ----D---- C:\Program Files\Common Files\Atheros
2015-12-26 04:44:50 ----D---- C:\WINDOWS\SYSWOW64\NV
2015-12-26 04:44:50 ----D---- C:\WINDOWS\system32\NV
2015-12-26 04:44:47 ----D---- C:\ProgramData\NVIDIA
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2015-12-26 04:44:40 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2015-12-26 04:44:39 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2015-12-26 04:44:32 ----HD---- C:\Program Files (x86)\Uninstall Information
2015-12-26 04:44:10 ----D---- C:\ProgramData\NVIDIA Corporation
2015-12-26 04:43:55 ----D---- C:\Program Files\NVIDIA Corporation
2015-12-26 04:43:55 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-12-26 04:43:35 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2015-12-26 04:43:35 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2015-12-26 04:43:28 ----D---- C:\Program Files\Intel
2015-12-26 04:43:02 ----D---- C:\Program Files\Synaptics
2015-12-26 04:40:25 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-26 04:38:36 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-26 04:37:51 ----D---- C:\WINDOWS\Prefetch
2015-12-26 04:36:53 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-26 04:36:37 ----ASH---- C:\swapfile.sys
2015-12-23 17:26:34 ----D---- C:\Users\Lubo\AppData\Roaming\M-Photo
======List of files/folders modified in the last 1 month======
2016-01-15 15:20:55 ----RD---- C:\Program Files
2016-01-15 14:33:34 ----D---- C:\WINDOWS\Temp
2016-01-15 14:28:01 ----D---- C:\WINDOWS\system32\sru
2016-01-15 14:22:31 ----D---- C:\WINDOWS\system32\config
2016-01-15 14:21:57 ----SHD---- C:\System Volume Information
2016-01-15 14:19:50 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-15 13:01:55 ----D---- C:\Users\Lubo\AppData\Roaming\vlc
2016-01-15 12:06:42 ----D---- C:\WINDOWS\system32\Tasks
2016-01-15 09:48:26 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-15 09:22:47 ----D---- C:\Program Files (x86)\Common Files
2016-01-15 09:22:46 ----HD---- C:\ProgramData
2016-01-15 09:22:45 ----RD---- C:\Program Files (x86)
2016-01-15 08:42:30 ----D---- C:\WINDOWS\CbsTemp
2016-01-15 08:31:04 ----D---- C:\WINDOWS\AppReadiness
2016-01-15 08:24:38 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-01-15 08:24:38 ----D---- C:\WINDOWS\System32
2016-01-14 18:44:48 ----D---- C:\WINDOWS\INF
2016-01-14 18:39:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-14 18:33:36 ----D---- C:\WINDOWS\WinSxS
2016-01-14 18:31:59 ----D---- C:\WINDOWS\system32\drivers
2016-01-14 18:29:20 ----D---- C:\WINDOWS\SysWOW64
2016-01-14 18:29:19 ----D---- C:\WINDOWS\system32\Boot
2016-01-14 18:29:19 ----D---- C:\WINDOWS\system32\appraiser
2016-01-14 18:29:17 ----D---- C:\WINDOWS\AppPatch
2016-01-13 13:26:36 ----D---- C:\WINDOWS\system32\MRT
2016-01-13 13:26:35 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-13 10:59:25 ----SHD---- C:\WINDOWS\Installer
2016-01-13 10:59:24 ----HD---- C:\Config.Msi
2016-01-13 10:58:03 ----HD---- C:\Program Files\WindowsApps
2016-01-13 10:47:38 ----D---- C:\WINDOWS\system32\catroot2
2016-01-08 16:24:06 ----D---- C:\Windows
2016-01-08 16:21:24 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-07 15:31:14 ----D---- C:\WINDOWS\Tasks
2016-01-07 15:23:27 ----D---- C:\Program Files (x86)\Google
2016-01-06 16:58:52 ----RSD---- C:\WINDOWS\assembly
2016-01-06 16:56:40 ----D---- C:\WINDOWS\Logs
2016-01-06 16:30:59 ----D---- C:\ProgramData\Norton
2016-01-04 19:11:34 ----D---- C:\WINDOWS\rescache
2016-01-04 10:13:21 ----HD---- C:\WINDOWS\ELAMBKUP
2016-01-04 10:13:20 ----D---- C:\Program Files\Common Files
2016-01-04 10:09:41 ----D---- C:\Program Files (x86)\NortonInstaller
2016-01-04 10:01:53 ----D---- C:\Program Files\Internet Explorer
2016-01-04 10:01:53 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-03 21:34:39 ----D---- C:\ProgramData\CanonIJPLM
2016-01-03 02:40:25 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-28 21:01:28 ----D---- C:\WINDOWS\system32\WDI
2015-12-28 09:05:22 ----D---- C:\WINDOWS\system32\restore
2015-12-28 08:39:45 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-28 08:34:39 ----D---- C:\WINDOWS\system32\NDF
2015-12-27 10:14:53 ----D---- C:\WINDOWS\debug
2015-12-27 09:32:53 ----D---- C:\WINDOWS\appcompat
2015-12-26 13:30:51 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-26 13:30:51 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-12-26 13:30:51 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-26 13:30:51 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\migration
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\en-US
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\Dism
2015-12-26 13:30:51 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-26 13:30:51 ----D---- C:\WINDOWS\Provisioning
2015-12-26 13:30:51 ----D---- C:\WINDOWS\bcastdvr
2015-12-26 13:24:38 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-12-26 13:24:38 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\wbem
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-12-26 13:24:38 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2015-12-26 13:24:37 ----SD---- C:\WINDOWS\system32\F12
2015-12-26 13:24:37 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-12-26 13:24:37 ----D---- C:\WINDOWS\SYSWOW64\Com
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\winrm
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\WCN
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\slmgr
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\MUI
2015-12-26 13:24:37 ----D---- C:\WINDOWS\system32\migwiz
2015-12-26 13:24:34 ----D---- C:\WINDOWS\system32\Com
2015-12-26 13:24:34 ----D---- C:\WINDOWS\servicing
2015-12-26 13:24:34 ----D---- C:\WINDOWS\PolicyDefinitions
2015-12-26 13:24:33 ----D---- C:\WINDOWS\IME
2015-12-26 13:24:33 ----D---- C:\Program Files\Windows Photo Viewer
2015-12-26 13:24:33 ----D---- C:\Program Files\Windows Media Player
2015-12-26 13:24:33 ----D---- C:\Program Files\Windows Journal
2015-12-26 13:24:33 ----D---- C:\Program Files\Windows Defender
2015-12-26 13:24:33 ----D---- C:\Program Files\Common Files\System
2015-12-26 13:24:33 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-12-26 13:24:33 ----D---- C:\Program Files (x86)\Windows Media Player
2015-12-26 13:24:33 ----D---- C:\Program Files (x86)\Windows Defender
2015-12-26 09:30:05 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-26 09:00:20 ----RD---- C:\WINDOWS\PrintDialog
2015-12-26 09:00:18 ----RD---- C:\WINDOWS\MiracastView
2015-12-26 08:59:46 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-26 08:59:04 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-12-26 05:36:26 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-26 05:36:16 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-26 05:30:33 ----D---- C:\WINDOWS\Registration
2015-12-26 05:23:16 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-26 05:21:59 ----SD---- C:\ProgramData\Microsoft
2015-12-26 05:21:55 ----RSD---- C:\WINDOWS\Media
2015-12-26 05:21:46 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-26 05:13:07 ----D---- C:\WINDOWS\system32\wbem
2015-12-26 05:03:15 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-26 05:03:15 ----D---- C:\WINDOWS\SYSWOW64\bitstreams
2015-12-26 05:03:15 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2015-12-26 05:03:15 ----D---- C:\WINDOWS\system32\STRING
2015-12-26 05:03:14 ----RSD---- C:\WINDOWS\Fonts
2015-12-26 05:03:06 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2015-12-26 05:03:05 ----D---- C:\Program Files\Dolby Digital Plus
2015-12-26 04:55:54 ----D---- C:\WINDOWS\twain_32
2015-12-26 04:55:53 ----D---- C:\WINDOWS\SYSWOW64\spool
2015-12-26 04:55:48 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-12-26 04:55:48 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-12-26 04:55:48 ----D---- C:\WINDOWS\system32\spool
2015-12-26 04:55:41 ----D---- C:\WINDOWS\system32\oobe
2015-12-26 04:55:40 ----D---- C:\WINDOWS\system32\LSC
2015-12-26 04:55:40 ----D---- C:\WINDOWS\system32\InputMethod
2015-12-26 04:55:37 ----D---- C:\WINDOWS\System
2015-12-26 04:55:36 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-26 04:55:35 ----D---- C:\WINDOWS\OCR
2015-12-26 04:55:29 ----D---- C:\WINDOWS\InputMethod
2015-12-26 04:55:21 ----D---- C:\WINDOWS\ADFS
2015-12-26 04:54:33 ----RD---- C:\Users
2015-12-26 04:54:33 ----D---- C:\ProgramData\USOPrivate
2015-12-26 04:54:22 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-26 04:54:09 ----D---- C:\Program Files\Windows Mail
2015-12-26 04:54:05 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-26 04:53:49 ----D---- C:\WINDOWS\system32\Recovery
2015-12-26 04:47:52 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-26 04:46:59 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-26 04:44:39 ----D---- C:\WINDOWS\Help
2015-12-26 04:37:15 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-23 20:12:40 ----D---- C:\MCL
2015-12-23 20:12:39 ----A---- C:\WINDOWS\SYSWOW64\FOTOKNIHY_FOTOKNIHY_uninstaller.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-12-05 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-12-05 273784]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2014-02-19 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-07-23 31376]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-12-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-12-05 1055560]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-12-19 451040]
R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\WINDOWS\system32\drivers\NSTx64\7DE070B0.02A\ccSetx64.sys [2013-09-27 162392]
R1 dtsoftbus01;@oem40.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-26 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-12-05 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-12-19 97648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-12-05 155304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 ACPIVPC;@oem1.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-02-19 35600]
R3 AmUStor;@oem8.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2013-06-25 109336]
R3 athr;@oem42.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw10x.sys [2015-05-21 4310064]
R3 BTATH_BUS;@oem18.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-09-07 34384]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2015-03-09 599240]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 84992]
R3 ElcMouLFlt;ELECOM USB Mouse Lower Filter Driver; C:\WINDOWS\System32\drivers\ElcMouLFlt.sys [2015-09-11 28648]
R3 ElcMouUFlt;ELECOM USB Mouse Upper Filter Driver; C:\WINDOWS\System32\drivers\ElcMouUFlt.sys [2015-09-11 27624]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-17 3797424]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem47.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 L1C;@oem39.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2013-07-18 130248]
R3 MarvinBus;@oem3.inf,%MarvinBus.SVCDESC%;Pinnacle Marvin Bus 64; C:\WINDOWS\System32\drivers\MarvinBus64.sys [2005-09-23 261120]
R3 MEIx64;@oem15.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-04 99288]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-07-23 11142984]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-06-03 42696]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2013-08-11 551936]
R3 SynTP;@oem13.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-06-03 613576]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 athur;@oem33.inf,%ATHR.Service.DispName%;Qualcomm Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\System32\drivers\athuw8x.sys [2013-06-02 2919936]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 953856]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-26 117248]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-05 226440]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [2015-12-24 388968]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-17 330136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-04 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-04 390616]
R2 NCO;Norton Identity Safe; C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe [2015-03-05 131144]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-07-23 937800]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-16 1914656]
R2 OneSyncSvc_412dc;Sync Host_412dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 Service Mgr OutrageousDeal;Service Mgr OutrageousDeal; C:\ProgramData\65ad47d7-2e27-4a5c-b238-26643fdaeb98\plugincontainer.exe [2016-01-15 776928]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-08-11 338944]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-06-03 249032]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-17 291744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-24 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_412dc;Contact Data_412dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-07 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_202f259;Sync Host_202f259; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2b7119;Sync Host_2b7119; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_409b82;Sync Host_409b82; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_43683;Sync Host_43683; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4c6585;Sync Host_4c6585; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_9667f7;Sync Host_9667f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_aefbafa;Sync Host_aefbafa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-10-07 654848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-07 144200]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-10-16 272776]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_202f259;MessagingService_202f259; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2b7119;MessagingService_2b7119; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_409b82;MessagingService_409b82; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_412dc;MessagingService_412dc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_43683;MessagingService_43683; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4c6585;MessagingService_4c6585; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_9667f7;MessagingService_9667f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_aefbafa;MessagingService_aefbafa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-01-07 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_202f259;Contact Data_202f259; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2b7119;Contact Data_2b7119; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_409b82;Contact Data_409b82; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_43683;Contact Data_43683; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4c6585;Contact Data_4c6585; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_9667f7;Contact Data_9667f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_aefbafa;Contact Data_aefbafa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
Re: dost zpomalený NT vyskakující okna
Krasny den Vam preju 
Pokud je DVDVideoSoft regulerni program, havet jste si do PC natahl pri jeho instalaci - kouknete na obrazkovy navod, jak se priste podobnym zakernostem vyhnout http://forum.viry.cz/viewtopic.php?f=35 ... 1#p1374442
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
Pokud je DVDVideoSoft regulerni program, havet jste si do PC natahl pri jeho instalaci - kouknete na obrazkovy navod, jak se priste podobnym zakernostem vyhnout http://forum.viry.cz/viewtopic.php?f=35 ... 1#p1374442 V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose). Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Cleaning
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: dost zpomalený NT vyskakující okna
Dobrý den
s vyskakujicími okny už si poradil avast sám. Jesli můžu poprosit stejne o kontrolu pc. děkuji Luboš
zde log
# AdwCleaner v5.030 - Logfile created 19/01/2016 at 09:01:39
# Updated 17/01/2016 by Xplode
# Database : 2016-01-17.3 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Lubo - LENOVO-PC
# Running from : C:\Users\Lubo\Desktop\adwcleaner_5.030.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : Update Mgr OutrageousDeal
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
[-] Folder Deleted : C:\Program Files (x86)\Outrageous Deal
[-] Folder Deleted : C:\ProgramData\apn
[-] Folder Deleted : C:\ProgramData\AskPartnerNetwork
[-] Folder Deleted : C:\Users\Guest\AppData\Local\pokki
[-] Folder Deleted : C:\Users\Lubo\AppData\Local\AskPartnerNetwork
[-] Folder Deleted : C:\Users\Lubo\AppData\Local\SweetLabs App Platform
[-] Folder Deleted : C:\Users\Lubo\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\Lubo\AppData\Roaming\RHEng
[-] Folder Deleted : C:\Users\Lubo\AppData\Roaming\RPEng
[#] Folder Deleted : C:\WINDOWS\SysNative\Tasks\SweetLabs App Platform
***** [ Files ] *****
[-] File Deleted : C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[-] File Deleted : C:\Users\Lubo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PC App Store.lnk
[-] File Deleted : C:\Users\Lubo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[-] File Deleted : C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default\searchplugins\ask-search.xml
[-] File Deleted : C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default\user.js
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : SweetLabs App Platform
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\Directory\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\Drive\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\lnkfile\shell\pokki
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E2D2BF0-159F-4257-ACF0-B1F29B376FA0}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{4e2d2bf0-159f-4257-acf0-b1f29b376fa0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A69CDF2-B56C-48D3-BB9B-ED2925AEE772}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E7249F6-3124-4E09-BCA9-AE2B09F3D83E}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E2D2BF0-159F-4257-ACF0-B1F29B376FA0}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4e2d2bf0-159f-4257-acf0-b1f29b376fa0}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A69CDF2-B56C-48D3-BB9B-ED2925AEE772}
[-] Key Deleted : HKCU\Software\AskPartnerNetwork
[-] Key Deleted : HKCU\Software\SweetLabs App Platform
[-] Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
[-] Key Deleted : HKLM\SOFTWARE\OutrageousDeal
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C2300}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Outrageous Deal
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Key Deleted : HKCU\Software\Classes\pokki
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [6857 bytes] ##########
s vyskakujicími okny už si poradil avast sám. Jesli můžu poprosit stejne o kontrolu pc. děkuji Luboš
zde log
# AdwCleaner v5.030 - Logfile created 19/01/2016 at 09:01:39
# Updated 17/01/2016 by Xplode
# Database : 2016-01-17.3 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Lubo - LENOVO-PC
# Running from : C:\Users\Lubo\Desktop\adwcleaner_5.030.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : Update Mgr OutrageousDeal
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
[-] Folder Deleted : C:\Program Files (x86)\Outrageous Deal
[-] Folder Deleted : C:\ProgramData\apn
[-] Folder Deleted : C:\ProgramData\AskPartnerNetwork
[-] Folder Deleted : C:\Users\Guest\AppData\Local\pokki
[-] Folder Deleted : C:\Users\Lubo\AppData\Local\AskPartnerNetwork
[-] Folder Deleted : C:\Users\Lubo\AppData\Local\SweetLabs App Platform
[-] Folder Deleted : C:\Users\Lubo\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\Lubo\AppData\Roaming\RHEng
[-] Folder Deleted : C:\Users\Lubo\AppData\Roaming\RPEng
[#] Folder Deleted : C:\WINDOWS\SysNative\Tasks\SweetLabs App Platform
***** [ Files ] *****
[-] File Deleted : C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[-] File Deleted : C:\Users\Lubo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PC App Store.lnk
[-] File Deleted : C:\Users\Lubo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[-] File Deleted : C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default\searchplugins\ask-search.xml
[-] File Deleted : C:\Users\Lubo\AppData\Roaming\Mozilla\Firefox\Profiles\5ozr15b4.default\user.js
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : SweetLabs App Platform
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\Directory\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\Drive\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\lnkfile\shell\pokki
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E2D2BF0-159F-4257-ACF0-B1F29B376FA0}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{4e2d2bf0-159f-4257-acf0-b1f29b376fa0}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A69CDF2-B56C-48D3-BB9B-ED2925AEE772}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E7249F6-3124-4E09-BCA9-AE2B09F3D83E}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E2D2BF0-159F-4257-ACF0-B1F29B376FA0}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4e2d2bf0-159f-4257-acf0-b1f29b376fa0}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A69CDF2-B56C-48D3-BB9B-ED2925AEE772}
[-] Key Deleted : HKCU\Software\AskPartnerNetwork
[-] Key Deleted : HKCU\Software\SweetLabs App Platform
[-] Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
[-] Key Deleted : HKLM\SOFTWARE\OutrageousDeal
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C2300}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Outrageous Deal
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Key Deleted : HKCU\Software\Classes\pokki
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [6857 bytes] ##########
Re: dost zpomalený NT vyskakující okna
DVDVideoSoft je snad regulerní program:)
Re: dost zpomalený NT vyskakující okna
Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: dost zpomalený NT vyskakující okna
Zdravím
mám problém s FRSTLauncheru po spuštení napíše, že není na ploše a že ho tam mám dát. přitom ho pouštím ho z plochy.
diky Luboš
mám problém s FRSTLauncheru po spuštení napíše, že není na ploše a že ho tam mám dát. přitom ho pouštím ho z plochy.
diky Luboš
Re: dost zpomalený NT vyskakující okna
Spustte tedy jen samotny FRST64.exePokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: dost zpomalený NT vyskakující okna
Dobrý den logy jsou moc dlouhé dávám je jako přílohu.
děkuji Luboš
děkuji Luboš
- Přílohy
-
- frst a addition.rar
- (28.38 KiB) Staženo 67 x
Re: dost zpomalený NT vyskakující okna
Vypnete trvale Windows Defender - http://windows.microsoft.com/cs-cz/wind ... =windows-7 Odinstalujte starou a zranitelnou verzi javy. Pokud javu potrebujete, pak nainstalujte novou z java.com - pozor na adware pri jeji instalaci http://forum.viry.cz/viewtopic.php?p=1374438#p1374438 . Z hlediska bezpecnosti (exploity) je lepsi ji nemit. Aktualni je 8U66. Verze Javy, ktere v PC mate nainstalovane:- Java 8 Update 40
- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi
Kód: Vybrat vše
Start CreateRestorePoint: CloseProcesses: Folder: C:\Users\Lubo\AppData\Local\CrashDumps HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software) HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = SearchScopes: HKU\S-1-5-21-3363592213-3403915979-3187532261-1002 -> DefaultScope {B0B6717E-B303-4358-9622-30EFAA9AB568} URL = SearchScopes: HKU\S-1-5-21-3363592213-3403915979-3187532261-1002 -> {B0B6717E-B303-4358-9622-30EFAA9AB568} URL = 2016-01-19 08:56 - 2016-01-19 09:01 - 00000000 ____D C:\AdwCleaner 2016-01-19 08:55 - 2016-01-19 08:56 - 01505280 _____ C:\Users\Lubo\Desktop\adwcleaner_5.030.exe 2016-01-15 15:20 - 2016-01-15 15:23 - 00000000 ____D C:\Program Files\trend micro 2016-01-15 15:20 - 2016-01-15 15:21 - 00000000 ____D C:\rsit 2016-01-15 15:20 - 2016-01-15 15:20 - 01222144 _____ C:\Users\Lubo\Downloads\RSITx64.exe 2016-01-20 11:28 - 2016-01-20 11:28 - 00015327 _____ C:\Users\Lubo\Desktop\LM.bat 2016-01-20 11:26 - 2016-01-20 11:28 - 00029696 _____ C:\Users\Lubo\AppData\Local\MSGBOX.EXE CMD: del "C:\Program Files (x86)\GU*.tmp" 2016-01-07 16:31 - 2016-01-07 16:31 - 00000000 ____D C:\Program Files (x86)\GUM7BC1.tmp Task: {3C207531-4AE9-478E-B43A-EEBBB87DC7FD} - System32\Tasks\{CF54B4EF-1776-4767-9925-9F5A3A3992DD} => pcalua.exe -a "C:\Users\Lubo\Pictures\2015\Firmware-Updater Software\Driverinstall.exe" -d "C:\Users\Lubo\Pictures\2015\Firmware-Updater Software" Task: {9C85F231-CF5F-409B-BB11-235BA261DC0F} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-24] () Task: {D88A88AC-87F2-493B-B86E-ADD42A2D2DC6} - System32\Tasks\{A8CBCF3D-2D82-4EC8-86F8-87720E035613} => pcalua.exe -a C:\Users\Lubo\Downloads\LightScribeSimpleLabeler_1.18.27.10.exe -d C:\Users\Lubo\Downloads Task: {EDBFD6DF-768C-479D-8CD1-80AD9CDA0160} - System32\Tasks\{77849B0C-A03B-420D-9F68-A5261D256926} => pcalua.exe -a C:\Users\Lubo\Downloads\mcw10.exe -d C:\Users\Lubo\Downloads Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe CMD: type "C:\Windows\System32\drivers\etc\hosts" EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: dost zpomalený NT vyskakující okna
Dobrý den
defender byl už vypnutý.
javu jsem odinstaloval, nevím vůbec k čemu je:)
log zde
děkuji
Fix result of Farbar Recovery Scan Tool (x64) Version:18-01-2016
Ran by Lubo (2016-01-22 16:15:33) Run:1
Running from C:\Users\Lubo\Desktop
Loaded Profiles: UpdatusUser & Lubo (Available Profiles: UpdatusUser & Lubo & Guest)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
Folder: C:\Users\Lubo\AppData\Local\CrashDumps
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software)
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\S-1-5-21-3363592213-3403915979-3187532261-1002 -> DefaultScope {B0B6717E-B303-4358-9622-30EFAA9AB568} URL =
SearchScopes: HKU\S-1-5-21-3363592213-3403915979-3187532261-1002 -> {B0B6717E-B303-4358-9622-30EFAA9AB568} URL =
2016-01-19 08:56 - 2016-01-19 09:01 - 00000000 ____D C:\AdwCleaner
2016-01-19 08:55 - 2016-01-19 08:56 - 01505280 _____ C:\Users\Lubo\Desktop\adwcleaner_5.030.exe
2016-01-15 15:20 - 2016-01-15 15:23 - 00000000 ____D C:\Program Files\trend micro
2016-01-15 15:20 - 2016-01-15 15:21 - 00000000 ____D C:\rsit
2016-01-15 15:20 - 2016-01-15 15:20 - 01222144 _____ C:\Users\Lubo\Downloads\RSITx64.exe
2016-01-20 11:28 - 2016-01-20 11:28 - 00015327 _____ C:\Users\Lubo\Desktop\LM.bat
2016-01-20 11:26 - 2016-01-20 11:28 - 00029696 _____ C:\Users\Lubo\AppData\Local\MSGBOX.EXE
CMD: del "C:\Program Files (x86)\GU*.tmp"
2016-01-07 16:31 - 2016-01-07 16:31 - 00000000 ____D C:\Program Files (x86)\GUM7BC1.tmp
Task: {3C207531-4AE9-478E-B43A-EEBBB87DC7FD} - System32\Tasks\{CF54B4EF-1776-4767-9925-9F5A3A3992DD} => pcalua.exe -a "C:\Users\Lubo\Pictures\2015\Firmware-Updater Software\Driverinstall.exe" -d "C:\Users\Lubo\Pictures\2015\Firmware-Updater Software"
Task: {9C85F231-CF5F-409B-BB11-235BA261DC0F} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-24] ()
Task: {D88A88AC-87F2-493B-B86E-ADD42A2D2DC6} - System32\Tasks\{A8CBCF3D-2D82-4EC8-86F8-87720E035613} => pcalua.exe -a C:\Users\Lubo\Downloads\LightScribeSimpleLabeler_1.18.27.10.exe -d C:\Users\Lubo\Downloads
Task: {EDBFD6DF-768C-479D-8CD1-80AD9CDA0160} - System32\Tasks\{77849B0C-A03B-420D-9F68-A5261D256926} => pcalua.exe -a C:\Users\Lubo\Downloads\mcw10.exe -d C:\Users\Lubo\Downloads
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
CMD: type "C:\Windows\System32\drivers\etc\hosts"
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
========================= Folder: C:\Users\Lubo\AppData\Local\CrashDumps ========================
2016-01-20 18:10 - 2016-01-20 18:10 - 15319496 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe(1).6596.dmp
2016-01-20 18:16 - 2016-01-20 18:16 - 15217244 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.4892.dmp
2016-01-20 18:19 - 2016-01-20 18:19 - 15242928 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.5048.dmp
2016-01-20 18:13 - 2016-01-20 18:13 - 15213281 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.6376.dmp
2016-01-20 18:10 - 2016-01-20 18:10 - 15322188 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.6596.dmp
2016-01-20 18:20 - 2016-01-20 18:20 - 15230298 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.7544.dmp
2016-01-20 18:17 - 2016-01-20 18:17 - 15213481 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.7896.dmp
2016-01-22 16:15 - 2016-01-22 16:15 - 4517713 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\plugin-container.exe.3480.dmp
2016-01-15 11:25 - 2016-01-15 11:25 - 4459008 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\plugin-container.exe.4508.dmp
2016-01-06 16:29 - 2016-01-06 16:29 - 0984553 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Recorder.exe.7804.dmp
====== End of Folder: ======
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => value removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B0B6717E-B303-4358-9622-30EFAA9AB568}" => key removed successfully
HKCR\CLSID\{B0B6717E-B303-4358-9622-30EFAA9AB568} => key not found.
C:\AdwCleaner => moved successfully
C:\Users\Lubo\Desktop\adwcleaner_5.030.exe => moved successfully
C:\Program Files\trend micro => moved successfully
C:\rsit => moved successfully
C:\Users\Lubo\Downloads\RSITx64.exe => moved successfully
C:\Users\Lubo\Desktop\LM.bat => moved successfully
C:\Users\Lubo\AppData\Local\MSGBOX.EXE => moved successfully
========= del "C:\Program Files (x86)\GU*.tmp" =========
========= End of CMD: =========
C:\Program Files (x86)\GUM7BC1.tmp => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C207531-4AE9-478E-B43A-EEBBB87DC7FD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C207531-4AE9-478E-B43A-EEBBB87DC7FD}" => key removed successfully
C:\WINDOWS\System32\Tasks\{CF54B4EF-1776-4767-9925-9F5A3A3992DD} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CF54B4EF-1776-4767-9925-9F5A3A3992DD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9C85F231-CF5F-409B-BB11-235BA261DC0F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9C85F231-CF5F-409B-BB11-235BA261DC0F}" => key removed successfully
C:\WINDOWS\System32\Tasks\klcp_update => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\klcp_update" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D88A88AC-87F2-493B-B86E-ADD42A2D2DC6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D88A88AC-87F2-493B-B86E-ADD42A2D2DC6}" => key removed successfully
C:\WINDOWS\System32\Tasks\{A8CBCF3D-2D82-4EC8-86F8-87720E035613} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A8CBCF3D-2D82-4EC8-86F8-87720E035613}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDBFD6DF-768C-479D-8CD1-80AD9CDA0160}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDBFD6DF-768C-479D-8CD1-80AD9CDA0160}" => key removed successfully
C:\WINDOWS\System32\Tasks\{77849B0C-A03B-420D-9F68-A5261D256926} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{77849B0C-A03B-420D-9F68-A5261D256926}" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
========= type "C:\Windows\System32\drivers\etc\hosts" =========
# Copyright (c) 1993-2009 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
# 127.0.0.1 localhost
# ::1 localhost
0.0.0.0 a.ads1.msn.com
0.0.0.0 a.ads2.msads.net
0.0.0.0 a.ads2.msn.com
0.0.0.0 a.rad.msn.com
0.0.0.0 a-0001.a-msedge.net
0.0.0.0 a-0002.a-msedge.net
0.0.0.0 a-0003.a-msedge.net
0.0.0.0 a-0004.a-msedge.net
0.0.0.0 a-0005.a-msedge.net
0.0.0.0 a-0006.a-msedge.net
0.0.0.0 a-0007.a-msedge.net
0.0.0.0 a-0008.a-msedge.net
0.0.0.0 a-0009.a-msedge.net
0.0.0.0 ac3.msn.com
0.0.0.0 ad.doubleclick.net
0.0.0.0 adnexus.net
0.0.0.0 adnxs.com
0.0.0.0 ads.msn.com
0.0.0.0 ads1.msads.net
0.0.0.0 ads1.msn.com
0.0.0.0 aidps.atdmt.com
0.0.0.0 aka-cdn-ns.adtech.de
0.0.0.0 a-msedge.net
0.0.0.0 az361816.vo.msecnd.net
0.0.0.0 az512334.vo.msecnd.net
0.0.0.0 b.ads1.msn.com
0.0.0.0 b.ads2.msads.net
0.0.0.0 b.rad.msn.com
0.0.0.0 bs.serving-sys.com
0.0.0.0 c.atdmt.com
0.0.0.0 c.msn.com
0.0.0.0 cdn.atdmt.com
0.0.0.0 cds26.ams9.msecn.net
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 db3aqu.atdmt.com
0.0.0.0 df.telemetry.microsoft.com
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 ec.atdmt.com
0.0.0.0 feedback.microsoft-hohm.com
0.0.0.0 feedback.search.microsoft.com
0.0.0.0 feedback.windows.com
0.0.0.0 flex.msn.com
0.0.0.0 g.msn.com
0.0.0.0 h1.msn.com
0.0.0.0 choice.microsoft.com
0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 lb1.www.ms.akadns.net
0.0.0.0 live.rads.msn.com
0.0.0.0 m.adnxs.com
0.0.0.0 msedge.net
0.0.0.0 msftncsi.com
0.0.0.0 msnbot-65-55-108-23.search.msn.com
0.0.0.0 msntest.serving-sys.com
0.0.0.0 oca.telemetry.microsoft.com
0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
0.0.0.0 pre.footprintpredict.com
0.0.0.0 preview.msn.com
0.0.0.0 rad.live.com
0.0.0.0 rad.msn.com
0.0.0.0 redir.metaservices.microsoft.com
0.0.0.0 secure.adnxs.com
0.0.0.0 secure.flashtalking.com
0.0.0.0 settings-sandbox.data.microsoft.com
0.0.0.0 settings-win.data.microsoft.com
0.0.0.0 schemas.microsoft.akadns.net
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 sqm.df.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
0.0.0.0 ssw.live.com
0.0.0.0 static.2mdn.net
0.0.0.0 statsfe1.ws.microsoft.com
0.0.0.0 statsfe2.ws.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
0.0.0.0 telemetry.appex.bing.net
0.0.0.0 telemetry.microsoft.com
0.0.0.0 telemetry.urs.microsoft.com
0.0.0.0 vortex.data.microsoft.com
0.0.0.0 vortex-bn2.metron.live.com.nsatc.net
0.0.0.0 vortex-cy2.metron.live.com.nsatc.net
0.0.0.0 vortex-sandbox.data.microsoft.com
0.0.0.0 vortex-win.data.microsoft.com
0.0.0.0 watson.live.com
0.0.0.0 www.msftncsi.com
0.0.0.0 apps.skype.com
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 m.hotmail.com
0.0.0.0 pricelist.skype.com
0.0.0.0 reports.wes.df.telemetry.microsoft.com
0.0.0.0 s.gateway.messenger.live.com
0.0.0.0 s0.2mdn.net
0.0.0.0 services.wes.df.telemetry.microsoft.com
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 ui.skype.com
0.0.0.0 view.atdmt.com
0.0.0.0 watson.microsoft.com
0.0.0.0 watson.ppe.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
0.0.0.0 wes.df.telemetry.microsoft.com
========= End of CMD: =========
EmptyTemp: => 4.7 GB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 16:19:47 ====
defender byl už vypnutý.
javu jsem odinstaloval, nevím vůbec k čemu je:)
log zde
děkuji
Fix result of Farbar Recovery Scan Tool (x64) Version:18-01-2016
Ran by Lubo (2016-01-22 16:15:33) Run:1
Running from C:\Users\Lubo\Desktop
Loaded Profiles: UpdatusUser & Lubo (Available Profiles: UpdatusUser & Lubo & Guest)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
Folder: C:\Users\Lubo\AppData\Local\CrashDumps
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software)
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\S-1-5-21-3363592213-3403915979-3187532261-1002 -> DefaultScope {B0B6717E-B303-4358-9622-30EFAA9AB568} URL =
SearchScopes: HKU\S-1-5-21-3363592213-3403915979-3187532261-1002 -> {B0B6717E-B303-4358-9622-30EFAA9AB568} URL =
2016-01-19 08:56 - 2016-01-19 09:01 - 00000000 ____D C:\AdwCleaner
2016-01-19 08:55 - 2016-01-19 08:56 - 01505280 _____ C:\Users\Lubo\Desktop\adwcleaner_5.030.exe
2016-01-15 15:20 - 2016-01-15 15:23 - 00000000 ____D C:\Program Files\trend micro
2016-01-15 15:20 - 2016-01-15 15:21 - 00000000 ____D C:\rsit
2016-01-15 15:20 - 2016-01-15 15:20 - 01222144 _____ C:\Users\Lubo\Downloads\RSITx64.exe
2016-01-20 11:28 - 2016-01-20 11:28 - 00015327 _____ C:\Users\Lubo\Desktop\LM.bat
2016-01-20 11:26 - 2016-01-20 11:28 - 00029696 _____ C:\Users\Lubo\AppData\Local\MSGBOX.EXE
CMD: del "C:\Program Files (x86)\GU*.tmp"
2016-01-07 16:31 - 2016-01-07 16:31 - 00000000 ____D C:\Program Files (x86)\GUM7BC1.tmp
Task: {3C207531-4AE9-478E-B43A-EEBBB87DC7FD} - System32\Tasks\{CF54B4EF-1776-4767-9925-9F5A3A3992DD} => pcalua.exe -a "C:\Users\Lubo\Pictures\2015\Firmware-Updater Software\Driverinstall.exe" -d "C:\Users\Lubo\Pictures\2015\Firmware-Updater Software"
Task: {9C85F231-CF5F-409B-BB11-235BA261DC0F} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-24] ()
Task: {D88A88AC-87F2-493B-B86E-ADD42A2D2DC6} - System32\Tasks\{A8CBCF3D-2D82-4EC8-86F8-87720E035613} => pcalua.exe -a C:\Users\Lubo\Downloads\LightScribeSimpleLabeler_1.18.27.10.exe -d C:\Users\Lubo\Downloads
Task: {EDBFD6DF-768C-479D-8CD1-80AD9CDA0160} - System32\Tasks\{77849B0C-A03B-420D-9F68-A5261D256926} => pcalua.exe -a C:\Users\Lubo\Downloads\mcw10.exe -d C:\Users\Lubo\Downloads
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
CMD: type "C:\Windows\System32\drivers\etc\hosts"
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
========================= Folder: C:\Users\Lubo\AppData\Local\CrashDumps ========================
2016-01-20 18:10 - 2016-01-20 18:10 - 15319496 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe(1).6596.dmp
2016-01-20 18:16 - 2016-01-20 18:16 - 15217244 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.4892.dmp
2016-01-20 18:19 - 2016-01-20 18:19 - 15242928 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.5048.dmp
2016-01-20 18:13 - 2016-01-20 18:13 - 15213281 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.6376.dmp
2016-01-20 18:10 - 2016-01-20 18:10 - 15322188 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.6596.dmp
2016-01-20 18:20 - 2016-01-20 18:20 - 15230298 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.7544.dmp
2016-01-20 18:17 - 2016-01-20 18:17 - 15213481 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Cars_FAL.exe.7896.dmp
2016-01-22 16:15 - 2016-01-22 16:15 - 4517713 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\plugin-container.exe.3480.dmp
2016-01-15 11:25 - 2016-01-15 11:25 - 4459008 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\plugin-container.exe.4508.dmp
2016-01-06 16:29 - 2016-01-06 16:29 - 0984553 _____ () C:\Users\Lubo\AppData\Local\CrashDumps\Recorder.exe.7804.dmp
====== End of Folder: ======
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => value removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-3363592213-3403915979-3187532261-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B0B6717E-B303-4358-9622-30EFAA9AB568}" => key removed successfully
HKCR\CLSID\{B0B6717E-B303-4358-9622-30EFAA9AB568} => key not found.
C:\AdwCleaner => moved successfully
C:\Users\Lubo\Desktop\adwcleaner_5.030.exe => moved successfully
C:\Program Files\trend micro => moved successfully
C:\rsit => moved successfully
C:\Users\Lubo\Downloads\RSITx64.exe => moved successfully
C:\Users\Lubo\Desktop\LM.bat => moved successfully
C:\Users\Lubo\AppData\Local\MSGBOX.EXE => moved successfully
========= del "C:\Program Files (x86)\GU*.tmp" =========
========= End of CMD: =========
C:\Program Files (x86)\GUM7BC1.tmp => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C207531-4AE9-478E-B43A-EEBBB87DC7FD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C207531-4AE9-478E-B43A-EEBBB87DC7FD}" => key removed successfully
C:\WINDOWS\System32\Tasks\{CF54B4EF-1776-4767-9925-9F5A3A3992DD} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CF54B4EF-1776-4767-9925-9F5A3A3992DD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9C85F231-CF5F-409B-BB11-235BA261DC0F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9C85F231-CF5F-409B-BB11-235BA261DC0F}" => key removed successfully
C:\WINDOWS\System32\Tasks\klcp_update => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\klcp_update" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D88A88AC-87F2-493B-B86E-ADD42A2D2DC6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D88A88AC-87F2-493B-B86E-ADD42A2D2DC6}" => key removed successfully
C:\WINDOWS\System32\Tasks\{A8CBCF3D-2D82-4EC8-86F8-87720E035613} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A8CBCF3D-2D82-4EC8-86F8-87720E035613}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDBFD6DF-768C-479D-8CD1-80AD9CDA0160}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDBFD6DF-768C-479D-8CD1-80AD9CDA0160}" => key removed successfully
C:\WINDOWS\System32\Tasks\{77849B0C-A03B-420D-9F68-A5261D256926} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{77849B0C-A03B-420D-9F68-A5261D256926}" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
========= type "C:\Windows\System32\drivers\etc\hosts" =========
# Copyright (c) 1993-2009 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
# 127.0.0.1 localhost
# ::1 localhost
0.0.0.0 a.ads1.msn.com
0.0.0.0 a.ads2.msads.net
0.0.0.0 a.ads2.msn.com
0.0.0.0 a.rad.msn.com
0.0.0.0 a-0001.a-msedge.net
0.0.0.0 a-0002.a-msedge.net
0.0.0.0 a-0003.a-msedge.net
0.0.0.0 a-0004.a-msedge.net
0.0.0.0 a-0005.a-msedge.net
0.0.0.0 a-0006.a-msedge.net
0.0.0.0 a-0007.a-msedge.net
0.0.0.0 a-0008.a-msedge.net
0.0.0.0 a-0009.a-msedge.net
0.0.0.0 ac3.msn.com
0.0.0.0 ad.doubleclick.net
0.0.0.0 adnexus.net
0.0.0.0 adnxs.com
0.0.0.0 ads.msn.com
0.0.0.0 ads1.msads.net
0.0.0.0 ads1.msn.com
0.0.0.0 aidps.atdmt.com
0.0.0.0 aka-cdn-ns.adtech.de
0.0.0.0 a-msedge.net
0.0.0.0 az361816.vo.msecnd.net
0.0.0.0 az512334.vo.msecnd.net
0.0.0.0 b.ads1.msn.com
0.0.0.0 b.ads2.msads.net
0.0.0.0 b.rad.msn.com
0.0.0.0 bs.serving-sys.com
0.0.0.0 c.atdmt.com
0.0.0.0 c.msn.com
0.0.0.0 cdn.atdmt.com
0.0.0.0 cds26.ams9.msecn.net
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 db3aqu.atdmt.com
0.0.0.0 df.telemetry.microsoft.com
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 ec.atdmt.com
0.0.0.0 feedback.microsoft-hohm.com
0.0.0.0 feedback.search.microsoft.com
0.0.0.0 feedback.windows.com
0.0.0.0 flex.msn.com
0.0.0.0 g.msn.com
0.0.0.0 h1.msn.com
0.0.0.0 choice.microsoft.com
0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 lb1.www.ms.akadns.net
0.0.0.0 live.rads.msn.com
0.0.0.0 m.adnxs.com
0.0.0.0 msedge.net
0.0.0.0 msftncsi.com
0.0.0.0 msnbot-65-55-108-23.search.msn.com
0.0.0.0 msntest.serving-sys.com
0.0.0.0 oca.telemetry.microsoft.com
0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
0.0.0.0 pre.footprintpredict.com
0.0.0.0 preview.msn.com
0.0.0.0 rad.live.com
0.0.0.0 rad.msn.com
0.0.0.0 redir.metaservices.microsoft.com
0.0.0.0 secure.adnxs.com
0.0.0.0 secure.flashtalking.com
0.0.0.0 settings-sandbox.data.microsoft.com
0.0.0.0 settings-win.data.microsoft.com
0.0.0.0 schemas.microsoft.akadns.net
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 sqm.df.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
0.0.0.0 ssw.live.com
0.0.0.0 static.2mdn.net
0.0.0.0 statsfe1.ws.microsoft.com
0.0.0.0 statsfe2.ws.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
0.0.0.0 telemetry.appex.bing.net
0.0.0.0 telemetry.microsoft.com
0.0.0.0 telemetry.urs.microsoft.com
0.0.0.0 vortex.data.microsoft.com
0.0.0.0 vortex-bn2.metron.live.com.nsatc.net
0.0.0.0 vortex-cy2.metron.live.com.nsatc.net
0.0.0.0 vortex-sandbox.data.microsoft.com
0.0.0.0 vortex-win.data.microsoft.com
0.0.0.0 watson.live.com
0.0.0.0 www.msftncsi.com
0.0.0.0 apps.skype.com
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 m.hotmail.com
0.0.0.0 pricelist.skype.com
0.0.0.0 reports.wes.df.telemetry.microsoft.com
0.0.0.0 s.gateway.messenger.live.com
0.0.0.0 s0.2mdn.net
0.0.0.0 services.wes.df.telemetry.microsoft.com
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 ui.skype.com
0.0.0.0 view.atdmt.com
0.0.0.0 watson.microsoft.com
0.0.0.0 watson.ppe.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
0.0.0.0 wes.df.telemetry.microsoft.com
========= End of CMD: =========
EmptyTemp: => 4.7 GB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 16:19:47 ====
Re: dost zpomalený NT vyskakující okna
Od Javy se prevazne kvuli velkemu mnozstvi zranitelnosti upousti. Jeste uklidime.
- Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
- Oznacte jen moznost "Remove disinfection tools"
- kliknete na Run
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: dost zpomalený NT vyskakující okna
DĚKUJI MOC LUBOŠ
Re: dost zpomalený NT vyskakující okna
Nemate zac, rad jsem pomohl 
Mejte se krasne a treba zase nekdy
Mejte se krasne a treba zase nekdy
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?