kontrola

[alpinestars]

zdravim, chtel bych pozadat prosim o kontrolu pc, nojo stahl jsem si advaced systemcore a pak zjistil coto je za bordel vlastne po restartu , ale nejak jsem si to vykutil, ale precijen, mam podezreni na nejake chyby v registrech ci v procesech jestli neni nejaky bordel/malwar, mam porad nejaky dojem zetam je neco co tam nema byt, no toje fuk tady je log a dik.



Logfile of random's system information tool 1.10 (written by random/random)
Run by Petr at 2016-02-14 03:04:52
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 591 GB (62%) free of 954 GB
Total RAM: 4094 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:04:54, on 14.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal

Running processes:
C:\Program Files\trend micro\Petr.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKCU\..\RunOnce: [CleanUp!] C:\Program Files (x86)\CleanUp!\Cleanup.exe /WindowsRestart
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 4396 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\AMD\CNext\CNext\cnext.exe" atlogon
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\svchost.exe -k LocalDriverService
C:\Windows\system32\SearchIndexer.exe /Embedding
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\MyDefrag v4.3.1\MyDefrag.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "? svchost.exe (NetworkService)"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1612.0.1546321553\2031287881" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,23,51 --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.301.1801.1001 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Freud/*ClientSideDetectionModel/Model0/CrossDevicePromo/7DaySingleProfile/*DomRel-Enable/enable/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="1612.1.294951487\1379711127" --font-cache-shared-handle=1908 /prefetch:673131151
taskeng.exe {F52BDCAF-18F3-4A7A-8BB3-AB5841FA4794}
C:\Windows\system32\msiexec.exe /V

C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Petr\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2015-04-30 1337000]
"StartCN"=C:\Program Files\AMD\CNext\CNext\cnext.exe [2016-02-03 4888264]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-11-03 13774040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"CleanUp!"=C:\Program Files (x86)\CleanUp!\Cleanup.exe [2006-06-25 442368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\PROGRAM FILES\CCLEANER\CCleaner64.exe [2016-01-15 8619224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriveTheLife2013]
C:\Program Files (x86)\DTLSoft\DriveTheLife\DriveTheLife.exe [2015-07-23 2132320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gila]
C:\Program Files (x86)\Genius\Gila\mousehid.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Imperator pro]
C:\Program Files (x86)\Genius\Imperator Pro\IMProhid.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2016-02-04 3014224]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2016-02-14 03:03:00 ----D---- C:\Program Files\trend micro
2016-02-14 03:02:59 ----D---- C:\rsit
2016-02-13 23:51:34 ----A---- C:\Windows\system32\MyDefragScreenSaver_v4.3.1.scr
2016-02-13 23:51:34 ----A---- C:\Windows\system32\MyDefragScreenSaver_v4.3.1.exe
2016-02-13 23:51:32 ----D---- C:\Program Files\MyDefrag v4.3.1
2016-02-13 22:12:30 ----A---- C:\Windows\system32\RtNicProp64.dll
2016-02-13 22:12:30 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2016-02-13 22:11:42 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2016-02-13 22:11:41 ----A---- C:\Windows\system32\SRSWOW64.dll
2016-02-13 22:11:41 ----A---- C:\Windows\system32\SRSTSX64.dll
2016-02-13 22:11:41 ----A---- C:\Windows\system32\SRSTSH64.dll
2016-02-13 22:11:41 ----A---- C:\Windows\system32\SRSHP64.dll
2016-02-13 22:11:40 ----A---- C:\Windows\system32\RtPgEx64.dll
2016-02-13 22:11:40 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2016-02-13 22:11:40 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2016-02-13 22:11:40 ----A---- C:\Windows\system32\RtkCfg64.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RtkApi64.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RTEEP64A.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RTEEL64A.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RTEEG64A.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RTEED64A.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RtDataProc64.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RTCOM64.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RP3DHT64.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RP3DAA64.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RltkAPO64.dll
2016-02-13 22:11:39 ----A---- C:\Windows\system32\RCoInstII64.dll
2016-02-13 22:11:38 ----A---- C:\Windows\SYSWOW64\MBAPO32.dll
2016-02-13 22:11:38 ----A---- C:\Windows\system32\MBWrp64.dll
2016-02-13 22:11:38 ----A---- C:\Windows\system32\MBppld64.dll
2016-02-13 22:11:38 ----A---- C:\Windows\system32\MBPPCn64.dll
2016-02-13 22:11:38 ----A---- C:\Windows\system32\MBAPO64.dll
2016-02-13 22:11:36 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2016-02-13 22:11:36 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2016-02-13 22:11:35 ----A---- C:\Windows\system32\FMAPO64.dll
2016-02-13 22:11:34 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-02-13 22:11:33 ----A---- C:\Windows\system32\AERTAR64.dll
2016-02-13 22:11:33 ----A---- C:\Windows\system32\AERTAC64.dll
2016-02-13 22:11:29 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2016-02-13 22:10:51 ----D---- C:\Program Files\Common Files\ATI Technologies
2016-02-13 22:09:58 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2016-02-13 22:09:58 ----A---- C:\Windows\system32\OVDecode64.dll
2016-02-13 22:09:57 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2016-02-13 22:09:57 ----A---- C:\Windows\system32\OpenVideo64.dll
2016-02-13 22:09:54 ----A---- C:\Windows\SYSWOW64\amdocl_ld32.exe
2016-02-13 22:09:54 ----A---- C:\Windows\system32\amdocl_ld64.exe
2016-02-13 22:09:54 ----A---- C:\Windows\system32\amdocl_as64.exe
2016-02-13 22:09:53 ----A---- C:\Windows\SYSWOW64\amdocl_as32.exe
2016-02-13 22:09:52 ----A---- C:\Windows\system32\atiuxp64.dll
2016-02-13 22:09:52 ----A---- C:\Windows\system32\atibtmon.exe
2016-02-13 22:09:50 ----A---- C:\Windows\system32\atidxx64.dll
2016-02-13 22:09:49 ----A---- C:\Windows\system32\aticfx64.dll
2016-02-13 22:09:48 ----A---- C:\Windows\SYSWOW64\ativvsvl.dat
2016-02-13 22:09:48 ----A---- C:\Windows\SYSWOW64\ativvsva.dat
2016-02-13 22:09:48 ----A---- C:\Windows\SYSWOW64\atipblag.dat
2016-02-13 22:09:48 ----A---- C:\Windows\system32\atipblag.dat
2016-02-13 22:08:29 ----D---- C:\Program Files (x86)\AMD
2016-02-13 22:01:30 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2016-02-13 22:01:10 ----D---- C:\ProgramData\Thunder Network
2016-02-13 21:53:30 ----D---- C:\ProgramData\DriveTheLife2013
2016-02-13 21:53:27 ----D---- C:\Users\Petr\AppData\Roaming\DriveTheLife2013
2016-02-13 21:53:22 ----A---- C:\Windows\system32\drivers\LDrvPro64.sys
2016-02-13 21:53:14 ----D---- C:\Program Files (x86)\DTLSoft
2016-02-13 21:53:14 ----D---- C:\DTLFolder
2016-02-13 21:44:47 ----D---- C:\Program Files (x86)\CleanUp!
2016-02-13 21:11:36 ----D---- C:\Windows\temp
2016-02-13 21:08:45 ----SHD---- C:\$RECYCLE.BIN
2016-02-13 19:46:54 ----D---- C:\ProgramData\AMD
2016-02-13 17:29:50 ----D---- C:\Windows\system32\DAX2
2016-02-13 17:29:24 ----D---- C:\Windows\SYSWOW64\RTCOM
2016-02-13 17:22:11 ----A---- C:\Windows\system32\authui.dll
2016-02-13 17:22:10 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-02-13 17:22:10 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-02-13 17:22:10 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-02-13 17:22:10 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-02-13 17:22:10 ----A---- C:\Windows\system32\shell32.dll
2016-02-13 17:22:10 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-13 17:22:10 ----A---- C:\Windows\explorer.exe
2016-02-13 17:22:09 ----A---- C:\Windows\system32\YamahaAE2.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\YamahaAE.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\WavesGUILib64.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\tossaemaxapo64.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\tossaeapo64.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\toseaeapo64.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\tosasfapo64.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\tosade.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\tepeqapo64.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\tadefxapo264.dll
2016-02-13 17:22:09 ----A---- C:\Windows\system32\tadefxapo.dll
2016-02-13 17:22:08 ----A---- C:\Windows\SYSWOW64\SRCOM.dll
2016-02-13 17:22:08 ----A---- C:\Windows\system32\SRRPTR64.dll
2016-02-13 17:22:08 ----A---- C:\Windows\system32\SRCOM64.dll
2016-02-13 17:22:08 ----A---- C:\Windows\system32\SRCOM.dll
2016-02-13 17:22:08 ----A---- C:\Windows\system32\SRAPO64.dll
2016-02-13 17:22:07 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2016-02-13 17:22:07 ----A---- C:\Windows\system32\sltech64.dll
2016-02-13 17:22:07 ----A---- C:\Windows\system32\slprp64.dll
2016-02-13 17:22:07 ----A---- C:\Windows\system32\slcnt64.dll
2016-02-13 17:22:07 ----A---- C:\Windows\system32\sl3apo64.dll
2016-02-13 17:22:07 ----A---- C:\Windows\system32\SFSS_APO.dll
2016-02-13 17:22:07 ----A---- C:\Windows\system32\SFNHK64.dll
2016-02-13 17:22:07 ----A---- C:\Windows\system32\SFCOM64.dll
2016-02-13 17:22:07 ----A---- C:\Windows\system32\SFAPO64.dll
2016-02-13 17:22:06 ----A---- C:\Windows\SYSWOW64\SECOMN32.DLL
2016-02-13 17:22:06 ----A---- C:\Windows\system32\SEHDRA64.dll
2016-02-13 17:22:06 ----A---- C:\Windows\system32\SECOMN64.dll
2016-02-13 17:22:06 ----A---- C:\Windows\system32\SEAPO64.dll
2016-02-13 17:22:05 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2016-02-13 17:22:02 ----A---- C:\Windows\system32\drivers\rtkSSTsetting.dat
2016-02-13 17:21:55 ----A---- C:\Windows\SYSWOW64\RltkAPO.dll
2016-02-13 17:21:54 ----A---- C:\Windows\system32\RCoRes64.dat
2016-02-13 17:21:52 ----A---- C:\Windows\system32\R4EEP64A.dll
2016-02-13 17:21:52 ----A---- C:\Windows\system32\R4EEL64A.dll
2016-02-13 17:21:52 ----A---- C:\Windows\system32\R4EEG64A.dll
2016-02-13 17:21:51 ----A---- C:\Windows\system32\R4EED64A.dll
2016-02-13 17:21:51 ----A---- C:\Windows\system32\R4EEA64A.dll
2016-02-13 17:21:51 ----A---- C:\Windows\system32\NAHIMICV2apo.dll
2016-02-13 17:21:51 ----A---- C:\Windows\system32\NahimicAPONSControl.dll
2016-02-13 17:21:51 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2016-02-13 17:21:51 ----A---- C:\Windows\system32\MISS_APO.dll
2016-02-13 17:21:50 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-02-13 17:21:50 ----A---- C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-02-13 17:21:50 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-02-13 17:21:50 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-02-13 17:21:50 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\MaxxAudioAPO7064.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\KAAPORT64.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\IntelSstCApoPropPage.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\IntelSSTAPO.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2016-02-13 17:21:49 ----A---- C:\Windows\system32\HiFiDAX2API.dll
2016-02-13 17:21:48 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-02-13 17:21:48 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2016-02-13 17:21:48 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DolbyDAX2APOv211.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DolbyDAX2APOv201.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DolbyDAX2APOProp.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DDPP64AF3.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DDPP64A.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DDPO64AF3.dll
2016-02-13 17:21:47 ----A---- C:\Windows\system32\DDPO64A.dll
2016-02-13 17:21:46 ----A---- C:\Windows\system32\DDPD64AF3.dll
2016-02-13 17:21:46 ----A---- C:\Windows\system32\DDPD64A.dll
2016-02-13 17:21:46 ----A---- C:\Windows\system32\DDPA64F3.dll
2016-02-13 17:21:46 ----A---- C:\Windows\system32\DDPA64.dll
2016-02-13 17:21:46 ----A---- C:\Windows\system32\CX64APO.dll
2016-02-13 17:21:46 ----A---- C:\Windows\system32\audioLibVc.dll
2016-02-13 17:21:45 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2016-02-13 17:21:09 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-02-13 17:21:09 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2016-02-13 17:21:09 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2016-02-13 17:21:09 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2016-02-13 17:21:09 ----A---- C:\Windows\system32\nlsbres.dll
2016-02-13 17:21:09 ----A---- C:\Windows\system32\kbdgeoqw.dll
2016-02-13 17:21:09 ----A---- C:\Windows\system32\KBDAZEL.DLL
2016-02-13 17:21:09 ----A---- C:\Windows\system32\KBDAZE.DLL
2016-02-13 17:20:11 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-02-13 17:20:11 ----A---- C:\Windows\system32\tzres.dll
2016-02-13 17:19:09 ----A---- C:\Windows\system32\UtcResources.dll
2016-02-13 17:19:09 ----A---- C:\Windows\system32\diagtrack.dll
2016-02-13 17:19:06 ----A---- C:\Windows\system32\tdh.dll
2016-02-13 17:19:04 ----A---- C:\Windows\SYSWOW64\tdh.dll
2016-02-13 17:17:50 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2016-02-13 17:17:50 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2016-02-13 17:17:50 ----A---- C:\Windows\system32\dwmcore.dll
2016-02-13 17:17:50 ----A---- C:\Windows\system32\dwmapi.dll
2016-02-13 17:17:34 ----A---- C:\Windows\system32\consent.exe
2016-02-13 17:17:34 ----A---- C:\Windows\system32\appinfo.dll
2016-02-13 17:17:14 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-02-13 17:17:14 ----A---- C:\Windows\system32\oleaut32.dll
2016-02-13 17:17:04 ----A---- C:\Windows\SYSWOW64\charmap.exe
2016-02-13 17:17:04 ----A---- C:\Windows\system32\charmap.exe
2016-02-13 17:16:52 ----A---- C:\Windows\system32\drivers\fvevol.sys
2016-02-13 17:16:19 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2016-02-13 17:16:19 ----A---- C:\Windows\SYSWOW64\gameux.dll
2016-02-13 17:16:19 ----A---- C:\Windows\system32\Wpc.dll
2016-02-13 17:16:19 ----A---- C:\Windows\system32\gameux.dll
2016-02-13 17:14:44 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2016-02-13 17:14:44 ----A---- C:\Windows\system32\prevhost.exe
2016-02-13 17:14:28 ----A---- C:\Windows\system32\drivers\ntfs.sys
2016-02-13 17:10:46 ----A---- C:\Windows\system32\drivers\amdide64.sys
2016-02-13 16:57:49 ----D---- C:\CIMTEMP
2016-02-13 16:51:42 ----A---- C:\Windows\SYSWOW64\drivers\HWiNFO64A.SYS
2016-02-13 16:50:46 ----D---- C:\Users\Petr\AppData\Roaming\ProductData
2016-02-13 16:50:44 ----D---- C:\ProgramData\ProductData
2016-02-13 16:50:16 ----D---- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-02-13 16:49:23 ----D---- C:\Users\Petr\AppData\Roaming\IObit
2016-02-13 16:49:20 ----D---- C:\ProgramData\IObit
2016-02-13 16:49:20 ----D---- C:\Program Files (x86)\IObit
2016-02-13 16:42:10 ----DC---- C:\Windows\system32\DRVSTORE
2016-02-13 16:42:10 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2016-02-13 16:28:25 ----D---- C:\ProgramData\SlimWare Utilities, Inc
2016-02-13 16:19:15 ----D---- C:\Users\Petr\AppData\Roaming\dlg
2016-02-13 16:18:25 ----D---- C:\extensions
2016-02-13 16:12:08 ----D---- C:\Users\Petr\AppData\Roaming\EasyDuplicateFinder
2016-02-13 16:12:08 ----D---- C:\ProgramData\Easy Duplicate Finder
2016-02-13 16:11:51 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2016-02-12 23:41:59 ----D---- C:\Users\Petr\AppData\Roaming\Apple Computer
2016-02-12 19:22:10 ----D---- C:\ProgramData\Steam
2016-02-12 16:02:40 ----D---- C:\Program Files (x86)\Rockstar Games
2016-02-12 16:02:22 ----D---- C:\Program Files\Rockstar Games
2016-02-12 16:01:03 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2016-02-12 15:59:06 ----D---- C:\ProgramData\Socialclub
2016-02-11 16:24:13 ----D---- C:\Program Files (x86)\FastShare
2016-02-10 15:15:11 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-02-10 15:15:11 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-10 15:15:11 ----A---- C:\Windows\system32\InkEd.dll
2016-02-10 15:15:09 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-10 15:15:09 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-10 15:15:09 ----A---- C:\Windows\system32\iertutil.dll
2016-02-10 15:15:08 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-10 15:15:08 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-02-10 15:15:08 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-10 15:15:07 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-02-10 15:15:07 ----A---- C:\Windows\system32\urlmon.dll
2016-02-10 15:15:07 ----A---- C:\Windows\system32\ieui.dll
2016-02-10 15:15:07 ----A---- C:\Windows\system32\ieframe.dll
2016-02-10 15:15:06 ----A---- C:\Windows\system32\mshtml.dll
2016-02-10 15:15:06 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-10 15:14:51 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-10 15:14:51 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-02-10 15:14:51 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-02-10 15:14:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-02-10 15:14:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-02-10 15:14:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-02-10 15:14:51 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-10 15:14:51 ----A---- C:\Windows\system32\inseng.dll
2016-02-10 15:14:51 ----A---- C:\Windows\system32\iernonce.dll
2016-02-10 15:14:51 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-10 15:14:51 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-10 15:14:51 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-10 15:14:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-10 15:14:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-10 15:14:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-02-10 15:14:50 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-10 15:14:49 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-02-10 15:14:49 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-10 15:14:49 ----A---- C:\Windows\system32\occache.dll
2016-02-10 15:14:49 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-10 15:14:49 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-10 15:14:48 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-02-10 15:14:48 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-02-10 15:14:48 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-10 15:14:48 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-02-10 15:14:48 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-10 15:14:48 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-10 15:14:48 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-10 15:14:47 ----A---- C:\Windows\system32\iesetup.dll
2016-02-10 15:14:47 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-10 15:14:46 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-10 15:14:46 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-02-10 15:14:46 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-10 15:14:46 ----A---- C:\Windows\system32\vbscript.dll
2016-02-10 15:14:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-10 15:14:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-02-10 15:14:45 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-02-10 15:14:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-10 15:14:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-10 15:14:44 ----A---- C:\Windows\system32\webcheck.dll
2016-02-10 15:14:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-10 15:14:44 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-10 15:14:44 ----A---- C:\Windows\system32\jscript.dll
2016-02-10 15:14:43 ----A---- C:\Windows\system32\wininet.dll
2016-02-10 15:14:43 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-10 15:14:43 ----A---- C:\Windows\system32\jscript9.dll
2016-02-10 15:14:42 ----A---- C:\Windows\system32\msrating.dll
2016-02-10 15:14:42 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-10 15:13:59 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-10 15:13:58 ----A---- C:\Windows\system32\rdpudd.dll
2016-02-10 15:13:58 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-02-10 15:13:58 ----A---- C:\Windows\system32\rdpcorets.dll
2016-02-10 15:13:57 ----A---- C:\Windows\system32\win32k.sys
2016-02-10 15:13:47 ----A---- C:\Windows\system32\ole32.dll
2016-02-10 15:13:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-02-10 15:13:31 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-10 15:13:31 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-10 15:13:31 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-10 15:13:31 ----A---- C:\Windows\system32\EncDec.dll
2016-02-10 15:13:31 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-10 15:13:30 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-10 15:13:30 ----A---- C:\Windows\system32\ntdll.dll
2016-02-10 15:13:30 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-10 15:13:30 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-10 15:13:30 ----A---- C:\Windows\system32\kerberos.dll
2016-02-10 15:13:29 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-02-10 15:13:29 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-02-10 15:13:29 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-10 15:13:29 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-02-10 15:13:29 ----A---- C:\Windows\system32\kernel32.dll
2016-02-10 15:13:29 ----A---- C:\Windows\system32\advapi32.dll
2016-02-10 15:13:28 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-10 15:13:28 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-10 15:13:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-10 15:13:28 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-10 15:13:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-10 15:13:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-02-10 15:13:27 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\wow64win.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\winsrv.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\wdigest.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\sspicli.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\srcore.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\smss.exe
2016-02-10 15:13:27 ----A---- C:\Windows\system32\schannel.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-10 15:13:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-10 15:13:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-10 15:13:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-10 15:13:26 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-02-10 15:13:26 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-02-10 15:13:26 ----A---- C:\Windows\system32\wow64cpu.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\wow64.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\srclient.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\secur32.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\rstrui.exe
2016-02-10 15:13:26 ----A---- C:\Windows\system32\ntvdm64.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\lsass.exe
2016-02-10 15:13:26 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-10 15:13:26 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\credssp.dll
2016-02-10 15:13:26 ----A---- C:\Windows\system32\conhost.exe
2016-02-10 15:13:26 ----A---- C:\Windows\system32\auditpol.exe
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-10 15:13:25 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-10 15:13:24 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-10 15:13:24 ----A---- C:\Windows\SYSWOW64\user.exe
2016-02-10 15:13:24 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-02-10 15:13:24 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-02-10 15:13:24 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-02-10 15:13:24 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-02-10 15:13:24 ----A---- C:\Windows\system32\msaudite.dll
2016-02-10 15:13:24 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-10 15:13:24 ----A---- C:\Windows\system32\adtschema.dll
2016-02-10 15:13:23 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-02-10 15:13:23 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-02-10 15:13:23 ----A---- C:\Windows\system32\msobjs.dll
2016-02-03 17:14:08 ----A---- C:\Windows\system32\amdave64.dll
2016-02-03 17:14:04 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2016-02-03 17:13:46 ----A---- C:\Windows\system32\amdhcp64.dll
2016-02-03 17:13:42 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2016-02-03 17:13:34 ----A---- C:\Windows\system32\atimpc64.dll
2016-02-03 17:13:34 ----A---- C:\Windows\system32\amdpcom64.dll
2016-02-03 17:13:30 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2016-02-03 17:13:30 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2016-02-03 17:12:58 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2016-02-03 17:12:54 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2016-02-03 17:12:54 ----A---- C:\Windows\system32\atiu9p64.dll
2016-02-03 17:12:44 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2016-02-03 17:12:32 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2016-02-03 17:12:22 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2016-02-03 17:12:14 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2016-02-03 17:12:04 ----A---- C:\Windows\system32\atiumd6a.dll
2016-02-03 17:12:00 ----A---- C:\Windows\system32\atiumd64.dll
2016-02-03 17:09:40 ----A---- C:\Windows\system32\drivers\amdacpksd.sys
2016-02-03 17:06:00 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2016-02-03 17:01:10 ----A---- C:\Windows\system32\clinfo.exe
2016-02-03 17:01:06 ----A---- C:\Windows\system32\amdocl64.dll
2016-02-03 16:59:52 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2016-02-03 16:58:46 ----A---- C:\Windows\system32\OpenCL.dll
2016-02-03 16:58:44 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2016-02-03 16:57:18 ----A---- C:\Windows\system32\amdocl12cl64.dll
2016-02-03 16:57:10 ----A---- C:\Windows\SYSWOW64\amdocl12cl.dll
2016-02-03 16:35:46 ----A---- C:\Windows\system32\amdlvr64.dll
2016-02-03 16:35:32 ----A---- C:\Windows\SYSWOW64\amdlvr32.dll
2016-02-03 16:35:20 ----A---- C:\Windows\system32\mantle64.dll
2016-02-03 16:35:16 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2016-02-03 16:35:10 ----A---- C:\Windows\system32\amdmantle64.dll
2016-02-03 16:30:20 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2016-02-03 16:26:36 ----A---- C:\Windows\system32\atio6axx.dll
2016-02-03 16:26:28 ----A---- C:\Windows\system32\mantleaxl64.dll
2016-02-03 16:26:24 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2016-02-03 16:24:08 ----A---- C:\Windows\system32\coinst_15.30.dll
2016-02-03 16:23:34 ----A---- C:\Windows\system32\atiapfxx.exe
2016-02-03 16:23:28 ----A---- C:\Windows\system32\aticalrt64.dll
2016-02-03 16:23:26 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2016-02-03 16:23:18 ----A---- C:\Windows\system32\aticalcl64.dll
2016-02-03 16:23:16 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2016-02-03 16:23:04 ----A---- C:\Windows\system32\aticaldd64.dll
2016-02-03 16:22:10 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2016-02-03 16:21:18 ----A---- C:\Windows\system32\amdmmcl6.dll
2016-02-03 16:21:14 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2016-02-03 16:20:42 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2016-02-03 16:16:56 ----A---- C:\Windows\system32\atidemgy.dll
2016-02-03 16:16:50 ----A---- C:\Windows\system32\dgtrayicon.exe
2016-02-03 16:16:42 ----A---- C:\Windows\system32\GameManager64.dll
2016-02-03 16:16:40 ----A---- C:\Windows\SYSWOW64\GameManager32.dll
2016-02-03 16:16:38 ----A---- C:\Windows\system32\atieah64.exe
2016-02-03 16:16:36 ----A---- C:\Windows\SYSWOW64\atieah32.exe
2016-02-03 16:16:30 ----A---- C:\Windows\system32\amdgfxinfo64.dll
2016-02-03 16:16:28 ----A---- C:\Windows\SYSWOW64\amdgfxinfo32.dll
2016-02-03 16:16:26 ----A---- C:\Windows\system32\atimuixx.dll
2016-02-03 16:16:22 ----A---- C:\Windows\system32\atieclxx.exe
2016-02-03 16:16:08 ----A---- C:\Windows\system32\atiesrxx.exe
2016-02-03 16:15:36 ----A---- C:\Windows\system32\atitmm64.dll
2016-02-03 16:11:04 ----A---- C:\Windows\system32\atiadlxx.dll
2016-02-03 16:11:02 ----A---- C:\Windows\system32\atisamu64.dll
2016-02-03 16:10:58 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2016-02-03 16:10:58 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2016-02-03 16:10:58 ----A---- C:\Windows\SYSWOW64\atiadlxx.dll
2016-02-03 16:10:50 ----A---- C:\Windows\system32\atig6pxx.dll
2016-02-03 16:10:46 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2016-02-03 16:10:46 ----A---- C:\Windows\system32\atiglpxx.dll
2016-02-03 16:10:44 ----A---- C:\Windows\system32\atig6txx.dll
2016-02-03 16:10:38 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2016-02-03 16:10:32 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2016-02-03 16:10:00 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2016-02-03 16:09:54 ----A---- C:\Windows\system32\hsa-thunk64.dll
2016-02-03 16:09:52 ----A---- C:\Windows\SYSWOW64\hsa-thunk.dll
2016-01-25 00:56:17 ----D---- C:\ProgramData\Blizzard Entertainment
2016-01-25 00:56:16 ----D---- C:\Users\Petr\AppData\Roaming\Battle.net
2016-01-25 00:54:51 ----D---- C:\Program Files (x86)\Battle.net
2016-01-25 00:52:56 ----D---- C:\ProgramData\Battle.net
2016-01-23 21:14:31 ----D---- C:\Users\Petr\AppData\Roaming\HeroesAndGeneralsDesktop
2016-01-21 23:55:48 ----A---- C:\Windows\system32\DelayAPO.dll
2016-01-21 23:55:18 ----A---- C:\Windows\system32\drivers\AtihdW76.sys

======List of files/folders modified in the last 1 month======

2016-02-14 03:03:00 ----RD---- C:\Program Files
2016-02-14 02:56:12 ----SHD---- C:\Windows\Installer
2016-02-14 02:51:59 ----RD---- C:\Program Files (x86)
2016-02-14 02:51:26 ----D---- C:\Windows\system32\Tasks
2016-02-14 02:51:25 ----D---- C:\Windows\Tasks
2016-02-14 02:06:55 ----D---- C:\Windows\winsxs
2016-02-14 01:57:55 ----D---- C:\Windows\inf
2016-02-14 01:56:20 ----D---- C:\Windows\debug
2016-02-14 01:56:20 ----D---- C:\Windows
2016-02-13 23:51:34 ----D---- C:\Windows\System32
2016-02-13 23:40:54 ----D---- C:\Windows\Microsoft.NET
2016-02-13 23:23:25 ----SHD---- C:\System Volume Information
2016-02-13 22:36:04 ----D---- C:\Windows\system32\config
2016-02-13 22:31:06 ----D---- C:\Windows\system32\drivers
2016-02-13 22:30:03 ----D---- C:\Windows\system32\catroot
2016-02-13 22:28:58 ----D---- C:\Program Files (x86)\Common Files
2016-02-13 22:28:48 ----D---- C:\Windows\system32\catroot2
2016-02-13 22:28:36 ----D---- C:\Windows\SysWOW64
2016-02-13 22:27:48 ----D---- C:\Windows\system32\DriverStore
2016-02-13 22:26:29 ----D---- C:\Program Files\AMD
2016-02-13 22:25:41 ----D---- C:\AdwCleaner
2016-02-13 22:12:02 ----D---- C:\Program Files\Realtek
2016-02-13 22:10:51 ----D---- C:\Program Files\Common Files
2016-02-13 22:09:39 ----D---- C:\AMD
2016-02-13 22:01:10 ----D---- C:\ProgramData
2016-02-13 21:11:37 ----D---- C:\Qoobox
2016-02-13 21:08:39 ----A---- C:\Windows\system.ini
2016-02-13 21:08:34 ----D---- C:\Windows\system32\drivers\etc
2016-02-13 21:07:26 ----D---- C:\Windows\erdnt
2016-02-13 21:04:52 ----D---- C:\Windows\SYSWOW64\drivers
2016-02-13 21:04:52 ----D---- C:\Windows\AppPatch
2016-02-13 20:55:19 ----D---- C:\Windows\SoftwareDistribution
2016-02-13 19:54:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-13 18:31:41 ----RSD---- C:\Windows\Fonts
2016-02-13 18:31:41 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-02-13 18:31:41 ----D---- C:\Windows\system32\cs-CZ
2016-02-13 18:31:41 ----D---- C:\Windows\cs-CZ
2016-02-13 17:50:11 ----D---- C:\Program Files (x86)\Steam
2016-02-13 17:26:06 ----D---- C:\Users\Petr\AppData\Roaming\Skype
2016-02-13 17:13:13 ----D---- C:\Windows\Panther
2016-02-13 17:13:11 ----D---- C:\Windows\Logs
2016-02-13 17:00:51 ----SD---- C:\Users\Petr\AppData\Roaming\Microsoft
2016-02-13 16:48:42 ----HD---- C:\Program Files (x86)\Temp
2016-02-13 16:47:50 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-13 13:22:57 ----RSD---- C:\Windows\assembly
2016-02-13 00:02:13 ----D---- C:\Windows\Prefetch
2016-02-12 23:59:46 ----D---- C:\Windows\SYSWOW64\en-US
2016-02-12 23:59:46 ----D---- C:\Windows\system32\en-US
2016-02-12 23:59:46 ----D---- C:\Program Files\Windows Journal
2016-02-12 23:59:46 ----D---- C:\Program Files\Internet Explorer
2016-02-12 23:59:46 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-12 23:59:13 ----D---- C:\Windows\system32\MRT
2016-02-12 23:59:12 ----A---- C:\Windows\system32\MRT.exe
2016-02-12 15:27:02 ----D---- C:\Hry
2016-01-15 11:55:21 ----D---- C:\Windows\rescache

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdide64;amdide64; C:\Windows\system32\DRIVERS\amdide64.sys [2016-02-13 11944]
R0 LDrvPro;LDrvPro; C:\Windows\system32\drivers\LDrvPro64.sys [2016-02-13 195824]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-03-04 280376]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2016-02-13 27552]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 ei2c;ei2c; \??\C:\Windows\system32\drivers\ei2c.sys [2015-12-26 20784]
R2 mi2c;mi2c; \??\C:\Windows\system32\drivers\mi2c.sys [2015-12-26 20784]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 124568]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2016-02-03 23976448]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2016-02-03 672768]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-01-21 104984]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-11-03 4270424]
R3 KYEKBPRO;IMPERATOR PRO Gaming Keyboard; C:\Windows\system32\drivers\KYEKBPRO.sys [2011-10-14 25600]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-09-06 764048]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 cpuz134;cpuz134; \??\C:\Users\Petr\AppData\Local\Temp\cpuz134\cpuz134_x64.sys []
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-08-30 30264]
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2015-08-27 25640]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2015-08-27 25640]
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2015-08-27 30528]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-05-24 253728]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2000-01-01 60640]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2016-02-03 246272]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2015-08-03 344064]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LDrvSvc;Local Driver Service; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-04-30 23816]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2015-04-30 366544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-08-30 66872]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-09-05 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-10 269504]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S4 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-12-28 2940704]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S4 ST2012_Svc;Spyware Terminator 2015 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2015-12-18 3267408]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]

-----------------EOF-----------------

[Márty84]

Zdravim

Pokud ten uzasny program naboril system, cisteni asi moc nepomuze, ale zkusit to muzem


Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

[alpinestars]

ahoj, tady je jeden z mych vcerejsich logu, pouzivam adwcleaner pro cisteni neco malo vymazal tak pro jistotu dnesni i ten vcerejsi mam jich tam vic:D tenhle jen ejvic zadelany ostatni clear uz

# AdwCleaner v5.033 - Logfile created 13/02/2016 at 19:22:04
# Updated 07/02/2016 by Xplode
# Database : 2016-02-07.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Petr - PETR-PC
# Running from : C:\Users\Petr\Desktop\Pičoviny\adwcleaner_5.033.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : swdumon
Service Found : Winsere

***** [ Folders ] *****

Folder Found : C:\Program Files (x86)\eSupport.com
Folder Found : C:\Program Files (x86)\Genius
Folder Found : C:\Program Files (x86)\SearchesToYesbnd
Folder Found : C:\Program Files (x86)\Winsere
Folder Found : C:\Program Files (x86)\WinTaske
Folder Found : C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genius
Folder Found : C:\Users\Petr\AppData\Local\eSupport.com
Folder Found : C:\Users\Petr\AppData\Local\slimware utilities inc
Folder Found : C:\Windows\SysNative\Tasks\WinTaske

***** [ Files ] *****

File Found : C:\Windows\SysNative\drivers\swdumon.sys

***** [ DLL ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

Task Found : WinTaske

***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Key Found : HKCU\Software\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}
Key Found : HKCU\Software\eSupport.com
Key Found : HKCU\Software\SlimWare Utilities Inc
Key Found : HKCU\Software\AppDataLow\Software\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}
Key Found : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
Key Found : HKLM\SOFTWARE\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}
Key Found : HKLM\SOFTWARE\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\yessearchesSoftware
Key Found : [x64] HKLM\SOFTWARE\SecurityUtility
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\ProgramData\SecurityUtility\NRHDWFYO32.dll
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\ProgramData\SecurityUtility\NRHDWFYO64.dll

***** [ Web browsers ] *****

[C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : yessearches
[C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://www.yessearches.com/?mode=nnnb&ptid=cos ... BHArBXMsBU..
[C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider_Data] Found : hxxp://www.yessearches.com/chrome.php?q={searc ... &mode=nnnb
[C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Found : hxxp://www.yessearches.com/?mode=nnnb&ptid=cos ... BHArBXMsBU..

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [3196 bytes] ##########

# AdwCleaner v5.033 - Logfile created 14/02/2016 at 11:05:54
# Updated 07/02/2016 by Xplode
# Database : 2016-02-07.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Petr - PETR-PC
# Running from : C:\Users\Petr\Desktop\Pičoviny\adwcleaner_5.033.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C5].txt - [687 bytes] ##########

[Márty84]

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[alpinestars]

dekuji, tady to je, jeste jsem nic nemazal.

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 14.2.2016
Čas skenování: 18:35
Protokol: aa.txt
Správce: Ano

Verze: 2.2.0.1024
Databáze malwaru: v2016.02.14.05
Databáze rootkitů: v2016.02.08.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64s
Souborový systém: NTFS
Uživatel: Petr

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 506668
Uplynulý čas: 1 hod, 13 min, 15 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 1
Trojan.Agent.W, C:\Windows\Setup\SCRIPTS\Windows7Loader.exe, , [c2db520e0891a6904b85c1bc0103ef11],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Márty84]

Ten system moc legalni nebude, ze?

[alpinestars]

Ten system moc legalni nebude, ze?

no stahnul jsem par programku dal neco malo do kupy vypada to zatim dobre i pamet ram uz neni moc vyuzivana jak byla, takze asi nebude nic co ? nevadi. ale dik

[Márty84]

Bohuzel, pravidla fora mi nedovoluji pokracovat, hovori jasne http://forum.viry.cz/viewtopic.php?f=12&t=115512

Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.

17.7. pro neaktivitu http://forum.viry.cz/viewtopic.php?f=12&t=123975