Dobrý den, prosím o kontrolu logu. Mám podezření, že můj PC je něčím ifikován. Dnes se mě změnilo bez mého přičinění heslo u uživatelského účtu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by jaruska at 2016-03-01 22:55:55
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (18% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:56:23, on 1.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\WINDOWS\system32\DllHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\WINDOWS\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.49020.0_x86__8wekyb3d8bbwe\Calculator.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Users\jaruska\Downloads\RSIT.exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 10782 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ei.VideoDownloadConverter_4z.com/Plugin]
"Description"=VideoDownloadConverter Plugin
"Path"=C:\Program Files\VideoDownloadConverter_4zEI\Installr\1.bin\NP4zEISB.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14 4533120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-29 17:17:10 ----D---- C:\rsit
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\twinui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shell32.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winload.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wininet.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\invagent.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\devinv.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\InputService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-01 22:55:45 ----D---- C:\WINDOWS\Temp
2016-03-01 22:11:13 ----D---- C:\WINDOWS\System32
2016-03-01 22:11:12 ----D---- C:\WINDOWS\INF
2016-03-01 22:07:15 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-01 22:00:54 ----A---- C:\ProgramData\HPWALog.txt
2016-03-01 22:00:53 ----HD---- C:\ProgramData
2016-03-01 21:57:41 ----D---- C:\WINDOWS\system32\sru
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:46:08 ----D---- C:\WINDOWS\system32\config
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:54 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-01 20:36:54 ----D---- C:\WINDOWS\system32\drivers
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:18:17 ----D---- C:\WINDOWS\AppReadiness
2016-03-01 20:03:02 ----HD---- C:\Program Files\WindowsApps
2016-03-01 20:01:06 ----D---- C:\WINDOWS\CbsTemp
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 20:00:26 ----D---- C:\WINDOWS\WinSxS
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:46:41 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-03-01 08:49:59 ----SHD---- C:\System Volume Information
2016-03-01 08:49:24 ----D---- C:\WINDOWS\Microsoft.NET
2016-02-29 23:30:19 ----RD---- C:\Program Files
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:17:35 ----D---- C:\Windows
2016-02-24 23:16:38 ----RD---- C:\WINDOWS\PurchaseDialog
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:11:41 ----RSD---- C:\WINDOWS\Media
2016-02-24 23:11:32 ----D---- C:\WINDOWS\system32\wbem
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\migration
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----RSD---- C:\WINDOWS\Fonts
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\Dism
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\Boot
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\appraiser
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:41:06 ----D---- C:\WINDOWS\bcastdvr
2016-02-24 22:41:06 ----D---- C:\WINDOWS\apppatch
2016-02-24 22:41:06 ----D---- C:\Program Files\Windows Journal
2016-02-24 22:41:06 ----D---- C:\Program Files\Internet Explorer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-03 20:01:17 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R1 MpKsle4e1b4f1;MpKsle4e1b4f1; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9587660D-C407-43FD-9BBD-BFEB17DEBF55}\MpKsle4e1b4f1.sys [2016-03-01 39168]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2015-10-30 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-10-30 136192]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2016-02-24 743936]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_3213a;Hostitel synchronizace_3213a; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-08-14 3291008]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3213a;Služba zasílání zpráv_3213a; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3213a;Data kontaktů_3213a; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontroulu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontroulu logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontroulu logu
AdwCleaner v5.037 - Logfile created 02/03/2016 at 22:02:39Rudy píše:Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Local]
# Operating system : Windows 10 Home (x86)
# Username : jaruska - JARUSKA-PC
# Running from : C:\Users\jaruska\Downloads\adwcleaner_5.037.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files\VideoDownloadConverter_4zEI
[-] Folder Deleted : C:\Users\jaruska\AppData\LocalLow\VideoDownloadConverter_4zEI
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@ei.VideoDownloadConverter_4z.com/Plugin
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FC39A9F4-77FF-4595-BDEC-8B768C481257}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FC39A9F4-77FF-4595-BDEC-8B768C481257}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
[-] Key Deleted : HKCU\Software\AppDataLow\Software\VideoDownloadConverter_4zEI
[-] Key Deleted : HKLM\SOFTWARE\VideoDownloadConverter_4zEI
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\wlogin.icq.com
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1683 bytes] - [02/03/2016 22:02:39]
C:\AdwCleaner\AdwCleaner[R0].txt - [1708 bytes] - [04/12/2013 23:20:50]
C:\AdwCleaner\AdwCleaner[R1].txt - [1458 bytes] - [13/12/2013 21:55:25]
C:\AdwCleaner\AdwCleaner[S0].txt - [1787 bytes] - [04/12/2013 23:21:58]
C:\AdwCleaner\AdwCleaner[S1].txt - [3422 bytes] - [13/12/2013 21:56:11]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2048 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontroulu logu
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontroulu logu
Dobrý večer, včera jsem zapomněla napsat, že mám v pc vir HackTool: Win32/Keygen
Logfile of random's system information tool 1.10 (written by random/random)
Run by jaruska at 2016-03-02 22:36:47
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (25% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:36:56, on 2.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\WINDOWS\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\jaruska\Downloads\RSIT (1).exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 10556 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14 4533120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-03-01 20:10:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 20:10:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-01 20:10:42 ----A---- C:\WINDOWS\system32\shell32.dll
2016-03-01 20:10:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-03-01 20:10:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-03-01 20:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-01 20:10:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-03-01 20:10:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-01 20:10:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-03-01 20:10:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-03-01 20:10:27 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-01 20:10:26 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-01 20:10:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\wer.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\winload.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-01 20:10:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\localspl.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-03-01 20:09:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\hal.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\werui.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\scapi.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\irmon.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-03-01 20:09:41 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-29 17:17:10 ----D---- C:\rsit
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-02 22:36:40 ----D---- C:\WINDOWS\Temp
2016-03-02 22:29:07 ----A---- C:\ProgramData\HPWALog.txt
2016-03-02 22:11:53 ----D---- C:\WINDOWS\System32
2016-03-02 22:11:53 ----D---- C:\WINDOWS\INF
2016-03-02 22:07:07 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-02 22:06:43 ----HD---- C:\ProgramData
2016-03-02 22:04:02 ----D---- C:\WINDOWS\system32\sru
2016-03-02 22:02:39 ----RD---- C:\Program Files
2016-03-02 22:02:39 ----D---- C:\AdwCleaner
2016-03-02 21:59:03 ----HD---- C:\Program Files\WindowsApps
2016-03-02 15:13:09 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-02 14:38:31 ----D---- C:\WINDOWS\system32\config
2016-03-02 13:28:39 ----D---- C:\WINDOWS\WinSxS
2016-03-02 13:27:06 ----D---- C:\WINDOWS\system32\drivers
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\wbem
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\migration
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Dism
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Boot
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\appraiser
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Media
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Fonts
2016-03-02 13:17:16 ----RD---- C:\WINDOWS\PurchaseDialog
2016-03-02 13:17:16 ----D---- C:\WINDOWS\bcastdvr
2016-03-02 13:17:16 ----D---- C:\WINDOWS\apppatch
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Portable Devices
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Media Player
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Journal
2016-03-02 13:17:15 ----D---- C:\Program Files\Internet Explorer
2016-03-02 13:17:13 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-01 23:48:41 ----D---- C:\WINDOWS\CbsTemp
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:18:17 ----D---- C:\WINDOWS\AppReadiness
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:46:41 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-03-01 08:49:59 ----SHD---- C:\System Volume Information
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:17:35 ----D---- C:\Windows
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-03 20:01:17 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-02-23 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-02-23 137216]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-02-23 744448]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_3b42b;Hostitel synchronizace_3b42b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-08-14 3291008]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3b42b;Služba zasílání zpráv_3b42b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3b42b;Data kontaktů_3b42b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by jaruska at 2016-03-02 22:36:47
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (25% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:36:56, on 2.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\WINDOWS\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\jaruska\Downloads\RSIT (1).exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 10556 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-08-14 4533120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-03-01 20:10:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 20:10:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-01 20:10:42 ----A---- C:\WINDOWS\system32\shell32.dll
2016-03-01 20:10:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-03-01 20:10:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-03-01 20:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-01 20:10:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-03-01 20:10:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-01 20:10:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-03-01 20:10:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-03-01 20:10:27 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-01 20:10:26 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-01 20:10:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\wer.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\winload.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-01 20:10:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\localspl.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-03-01 20:09:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\hal.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\werui.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\scapi.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\irmon.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-03-01 20:09:41 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-29 17:17:10 ----D---- C:\rsit
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-02 22:36:40 ----D---- C:\WINDOWS\Temp
2016-03-02 22:29:07 ----A---- C:\ProgramData\HPWALog.txt
2016-03-02 22:11:53 ----D---- C:\WINDOWS\System32
2016-03-02 22:11:53 ----D---- C:\WINDOWS\INF
2016-03-02 22:07:07 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-02 22:06:43 ----HD---- C:\ProgramData
2016-03-02 22:04:02 ----D---- C:\WINDOWS\system32\sru
2016-03-02 22:02:39 ----RD---- C:\Program Files
2016-03-02 22:02:39 ----D---- C:\AdwCleaner
2016-03-02 21:59:03 ----HD---- C:\Program Files\WindowsApps
2016-03-02 15:13:09 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-02 14:38:31 ----D---- C:\WINDOWS\system32\config
2016-03-02 13:28:39 ----D---- C:\WINDOWS\WinSxS
2016-03-02 13:27:06 ----D---- C:\WINDOWS\system32\drivers
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\wbem
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\migration
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Dism
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Boot
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\appraiser
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Media
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Fonts
2016-03-02 13:17:16 ----RD---- C:\WINDOWS\PurchaseDialog
2016-03-02 13:17:16 ----D---- C:\WINDOWS\bcastdvr
2016-03-02 13:17:16 ----D---- C:\WINDOWS\apppatch
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Portable Devices
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Media Player
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Journal
2016-03-02 13:17:15 ----D---- C:\Program Files\Internet Explorer
2016-03-02 13:17:13 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-01 23:48:41 ----D---- C:\WINDOWS\CbsTemp
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:18:17 ----D---- C:\WINDOWS\AppReadiness
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:46:41 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-03-01 08:49:59 ----SHD---- C:\System Volume Information
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:17:35 ----D---- C:\Windows
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-03 20:01:17 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-02-23 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-02-23 137216]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-02-23 744448]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_3b42b;Hostitel synchronizace_3b42b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-08-14 3291008]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3b42b;Služba zasílání zpráv_3b42b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3b42b;Data kontaktů_3b42b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontroulu logu
Jarubo píše:Dobrý večer, včera jsem zapomněla napsat, že mám v pc vir HackTool: Win32/Keygen
Jde o to, k čemu patří.
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Program Files\Google\Google Toolbar
C:\Program Files\Skype\Toolbars
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
:services
Skype C2C Service
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontroulu logu
Logfile of random's system information tool 1.10 (written by random/random)
Run by jaruska at 2016-03-03 23:15:31
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:15:42, on 3.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\notepad.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\WINDOWS\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\jaruska\Downloads\RSIT (2).exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 9917 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-03 23:08:08 ----D---- C:\_OTM
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-03-01 20:10:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 20:10:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-01 20:10:42 ----A---- C:\WINDOWS\system32\shell32.dll
2016-03-01 20:10:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-03-01 20:10:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-03-01 20:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-01 20:10:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-03-01 20:10:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-01 20:10:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-03-01 20:10:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-03-01 20:10:27 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-01 20:10:26 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-01 20:10:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\wer.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\winload.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-01 20:10:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\localspl.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-03-01 20:09:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\hal.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\werui.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\scapi.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\irmon.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-03-01 20:09:41 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-29 17:17:10 ----D---- C:\rsit
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-03 23:15:25 ----D---- C:\WINDOWS\Temp
2016-03-03 23:13:43 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-03 23:13:21 ----HD---- C:\ProgramData
2016-03-03 23:13:21 ----A---- C:\ProgramData\HPWALog.txt
2016-03-03 23:11:16 ----D---- C:\WINDOWS\system32\sru
2016-03-03 23:10:37 ----D---- C:\Windows
2016-03-03 23:09:04 ----D---- C:\WINDOWS\system32\config
2016-03-03 23:07:24 ----HD---- C:\Program Files\WindowsApps
2016-03-03 15:25:25 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-03 15:24:57 ----D---- C:\WINDOWS\WinSxS
2016-03-03 11:55:52 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-03 10:17:10 ----D---- C:\WINDOWS\System32
2016-03-03 10:17:09 ----D---- C:\WINDOWS\INF
2016-03-02 23:15:03 ----D---- C:\WINDOWS\CbsTemp
2016-03-02 23:14:37 ----SHD---- C:\System Volume Information
2016-03-02 22:02:39 ----RD---- C:\Program Files
2016-03-02 22:02:39 ----D---- C:\AdwCleaner
2016-03-02 21:59:04 ----D---- C:\WINDOWS\AppReadiness
2016-03-02 13:27:06 ----D---- C:\WINDOWS\system32\drivers
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\wbem
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\migration
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Dism
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Boot
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\appraiser
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Media
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Fonts
2016-03-02 13:17:16 ----RD---- C:\WINDOWS\PurchaseDialog
2016-03-02 13:17:16 ----D---- C:\WINDOWS\bcastdvr
2016-03-02 13:17:16 ----D---- C:\WINDOWS\apppatch
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Portable Devices
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Media Player
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Journal
2016-03-02 13:17:15 ----D---- C:\Program Files\Internet Explorer
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:46:41 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-02-23 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-02-23 137216]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-02-23 744448]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_38c8e;Hostitel synchronizace_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_57e386;Hostitel synchronizace_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_38c8e;Služba zasílání zpráv_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_57e386;Služba zasílání zpráv_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_38c8e;Data kontaktů_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_57e386;Data kontaktů_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Run by jaruska at 2016-03-03 23:15:31
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:15:42, on 3.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\notepad.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\WINDOWS\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\jaruska\Downloads\RSIT (2).exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 9917 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-03 23:08:08 ----D---- C:\_OTM
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-03-01 20:10:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 20:10:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-01 20:10:42 ----A---- C:\WINDOWS\system32\shell32.dll
2016-03-01 20:10:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-03-01 20:10:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-03-01 20:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-01 20:10:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-03-01 20:10:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-01 20:10:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-03-01 20:10:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-03-01 20:10:27 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-01 20:10:26 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-01 20:10:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\wer.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\winload.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-01 20:10:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\localspl.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-03-01 20:09:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\hal.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\werui.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\scapi.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\irmon.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-03-01 20:09:41 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-29 17:17:10 ----D---- C:\rsit
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-03 23:15:25 ----D---- C:\WINDOWS\Temp
2016-03-03 23:13:43 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-03 23:13:21 ----HD---- C:\ProgramData
2016-03-03 23:13:21 ----A---- C:\ProgramData\HPWALog.txt
2016-03-03 23:11:16 ----D---- C:\WINDOWS\system32\sru
2016-03-03 23:10:37 ----D---- C:\Windows
2016-03-03 23:09:04 ----D---- C:\WINDOWS\system32\config
2016-03-03 23:07:24 ----HD---- C:\Program Files\WindowsApps
2016-03-03 15:25:25 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-03 15:24:57 ----D---- C:\WINDOWS\WinSxS
2016-03-03 11:55:52 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-03 10:17:10 ----D---- C:\WINDOWS\System32
2016-03-03 10:17:09 ----D---- C:\WINDOWS\INF
2016-03-02 23:15:03 ----D---- C:\WINDOWS\CbsTemp
2016-03-02 23:14:37 ----SHD---- C:\System Volume Information
2016-03-02 22:02:39 ----RD---- C:\Program Files
2016-03-02 22:02:39 ----D---- C:\AdwCleaner
2016-03-02 21:59:04 ----D---- C:\WINDOWS\AppReadiness
2016-03-02 13:27:06 ----D---- C:\WINDOWS\system32\drivers
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\wbem
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\migration
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Dism
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Boot
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\appraiser
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Media
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Fonts
2016-03-02 13:17:16 ----RD---- C:\WINDOWS\PurchaseDialog
2016-03-02 13:17:16 ----D---- C:\WINDOWS\bcastdvr
2016-03-02 13:17:16 ----D---- C:\WINDOWS\apppatch
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Portable Devices
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Media Player
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Journal
2016-03-02 13:17:15 ----D---- C:\Program Files\Internet Explorer
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:46:41 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-02-23 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-02-23 137216]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-02-23 744448]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_38c8e;Hostitel synchronizace_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_57e386;Hostitel synchronizace_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_38c8e;Služba zasílání zpráv_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_57e386;Služba zasílání zpráv_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_38c8e;Data kontaktů_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_57e386;Data kontaktů_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Re: Prosím o kontroulu logu
Logfile of random's system information tool 1.10 (written by random/random)
Run by jaruska at 2016-03-03 23:15:31
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:15:42, on 3.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\notepad.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\WINDOWS\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\jaruska\Downloads\RSIT (2).exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 9917 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-03 23:08:08 ----D---- C:\_OTM
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-03-01 20:10:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 20:10:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-01 20:10:42 ----A---- C:\WINDOWS\system32\shell32.dll
2016-03-01 20:10:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-03-01 20:10:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-03-01 20:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-01 20:10:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-03-01 20:10:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-01 20:10:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-03-01 20:10:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-03-01 20:10:27 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-01 20:10:26 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-01 20:10:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\wer.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\winload.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-01 20:10:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\localspl.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-03-01 20:09:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\hal.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\werui.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\scapi.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\irmon.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-03-01 20:09:41 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-29 17:17:10 ----D---- C:\rsit
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-03 23:15:25 ----D---- C:\WINDOWS\Temp
2016-03-03 23:13:43 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-03 23:13:21 ----HD---- C:\ProgramData
2016-03-03 23:13:21 ----A---- C:\ProgramData\HPWALog.txt
2016-03-03 23:11:16 ----D---- C:\WINDOWS\system32\sru
2016-03-03 23:10:37 ----D---- C:\Windows
2016-03-03 23:09:04 ----D---- C:\WINDOWS\system32\config
2016-03-03 23:07:24 ----HD---- C:\Program Files\WindowsApps
2016-03-03 15:25:25 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-03 15:24:57 ----D---- C:\WINDOWS\WinSxS
2016-03-03 11:55:52 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-03 10:17:10 ----D---- C:\WINDOWS\System32
2016-03-03 10:17:09 ----D---- C:\WINDOWS\INF
2016-03-02 23:15:03 ----D---- C:\WINDOWS\CbsTemp
2016-03-02 23:14:37 ----SHD---- C:\System Volume Information
2016-03-02 22:02:39 ----RD---- C:\Program Files
2016-03-02 22:02:39 ----D---- C:\AdwCleaner
2016-03-02 21:59:04 ----D---- C:\WINDOWS\AppReadiness
2016-03-02 13:27:06 ----D---- C:\WINDOWS\system32\drivers
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\wbem
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\migration
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Dism
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Boot
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\appraiser
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Media
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Fonts
2016-03-02 13:17:16 ----RD---- C:\WINDOWS\PurchaseDialog
2016-03-02 13:17:16 ----D---- C:\WINDOWS\bcastdvr
2016-03-02 13:17:16 ----D---- C:\WINDOWS\apppatch
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Portable Devices
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Media Player
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Journal
2016-03-02 13:17:15 ----D---- C:\Program Files\Internet Explorer
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:46:41 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-02-23 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-02-23 137216]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-02-23 744448]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_38c8e;Hostitel synchronizace_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_57e386;Hostitel synchronizace_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_38c8e;Služba zasílání zpráv_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_57e386;Služba zasílání zpráv_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_38c8e;Data kontaktů_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_57e386;Data kontaktů_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Run by jaruska at 2016-03-03 23:15:31
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:15:42, on 3.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\notepad.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\WINDOWS\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\jaruska\Downloads\RSIT (2).exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 9917 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-03 23:08:08 ----D---- C:\_OTM
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-03-01 20:10:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 20:10:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-01 20:10:42 ----A---- C:\WINDOWS\system32\shell32.dll
2016-03-01 20:10:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-03-01 20:10:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-03-01 20:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-01 20:10:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-03-01 20:10:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-01 20:10:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-03-01 20:10:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-03-01 20:10:27 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-01 20:10:26 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-01 20:10:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\wer.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\winload.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-01 20:10:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\localspl.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-03-01 20:09:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\hal.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\werui.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\scapi.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\irmon.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-03-01 20:09:41 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-29 17:17:10 ----D---- C:\rsit
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-03 23:15:25 ----D---- C:\WINDOWS\Temp
2016-03-03 23:13:43 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-03 23:13:21 ----HD---- C:\ProgramData
2016-03-03 23:13:21 ----A---- C:\ProgramData\HPWALog.txt
2016-03-03 23:11:16 ----D---- C:\WINDOWS\system32\sru
2016-03-03 23:10:37 ----D---- C:\Windows
2016-03-03 23:09:04 ----D---- C:\WINDOWS\system32\config
2016-03-03 23:07:24 ----HD---- C:\Program Files\WindowsApps
2016-03-03 15:25:25 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-03 15:24:57 ----D---- C:\WINDOWS\WinSxS
2016-03-03 11:55:52 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-03 10:17:10 ----D---- C:\WINDOWS\System32
2016-03-03 10:17:09 ----D---- C:\WINDOWS\INF
2016-03-02 23:15:03 ----D---- C:\WINDOWS\CbsTemp
2016-03-02 23:14:37 ----SHD---- C:\System Volume Information
2016-03-02 22:02:39 ----RD---- C:\Program Files
2016-03-02 22:02:39 ----D---- C:\AdwCleaner
2016-03-02 21:59:04 ----D---- C:\WINDOWS\AppReadiness
2016-03-02 13:27:06 ----D---- C:\WINDOWS\system32\drivers
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\wbem
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\migration
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Dism
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Boot
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\appraiser
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Media
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Fonts
2016-03-02 13:17:16 ----RD---- C:\WINDOWS\PurchaseDialog
2016-03-02 13:17:16 ----D---- C:\WINDOWS\bcastdvr
2016-03-02 13:17:16 ----D---- C:\WINDOWS\apppatch
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Portable Devices
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Media Player
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Journal
2016-03-02 13:17:15 ----D---- C:\Program Files\Internet Explorer
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:46:41 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-02-23 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-02-23 137216]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-02-23 744448]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_38c8e;Hostitel synchronizace_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_57e386;Hostitel synchronizace_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_38c8e;Služba zasílání zpráv_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_57e386;Služba zasílání zpráv_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_38c8e;Data kontaktů_38c8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_57e386;Data kontaktů_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontroulu logu
Dvouklikem na soubor C:\Program Files\trend micro\jaruska.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontroulu logu
Dobrý večer, prosím znova o radu. Nejspíš jsem něco udělala špatně ,nefungujeme win start, prohledat win a přestal fungovat explorer 
Logfile of random's system information tool 1.10 (written by random/random)
Run by jaruska at 2016-03-05 00:01:40
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (23% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:01:50, on 5.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Users\jaruska\Downloads\RSIT (1).exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 9601 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-05 00:01:40 ----D---- C:\rsit
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-03-01 20:10:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 20:10:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-01 20:10:42 ----A---- C:\WINDOWS\system32\shell32.dll
2016-03-01 20:10:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-03-01 20:10:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-03-01 20:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-01 20:10:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-03-01 20:10:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-01 20:10:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-03-01 20:10:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-03-01 20:10:27 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-01 20:10:26 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-01 20:10:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\wer.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\winload.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-01 20:10:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\localspl.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-03-01 20:09:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\hal.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\werui.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\scapi.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\irmon.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-03-01 20:09:41 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-05 00:01:18 ----D---- C:\WINDOWS\Temp
2016-03-04 23:54:10 ----D---- C:\WINDOWS\System32
2016-03-04 23:54:10 ----D---- C:\WINDOWS\INF
2016-03-04 23:49:18 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-04 23:48:56 ----HD---- C:\ProgramData
2016-03-04 23:48:56 ----A---- C:\ProgramData\HPWALog.txt
2016-03-04 23:48:01 ----D---- C:\WINDOWS\system32\sru
2016-03-04 23:38:28 ----D---- C:\WINDOWS\AppReadiness
2016-03-04 21:08:56 ----D---- C:\WINDOWS\system32\Tasks
2016-03-04 18:46:44 ----HD---- C:\Program Files\WindowsApps
2016-03-04 13:10:22 ----D---- C:\WINDOWS\system32\config
2016-03-04 12:47:30 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-04 09:31:22 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-03 23:10:37 ----D---- C:\Windows
2016-03-03 15:24:57 ----D---- C:\WINDOWS\WinSxS
2016-03-02 23:15:03 ----D---- C:\WINDOWS\CbsTemp
2016-03-02 23:14:37 ----SHD---- C:\System Volume Information
2016-03-02 22:02:39 ----RD---- C:\Program Files
2016-03-02 22:02:39 ----D---- C:\AdwCleaner
2016-03-02 13:27:06 ----D---- C:\WINDOWS\system32\drivers
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\wbem
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\migration
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Dism
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Boot
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\appraiser
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Media
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Fonts
2016-03-02 13:17:16 ----RD---- C:\WINDOWS\PurchaseDialog
2016-03-02 13:17:16 ----D---- C:\WINDOWS\bcastdvr
2016-03-02 13:17:16 ----D---- C:\WINDOWS\apppatch
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Portable Devices
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Media Player
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Journal
2016-03-02 13:17:15 ----D---- C:\Program Files\Internet Explorer
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-02-23 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-02-23 137216]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-02-23 744448]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_3777c;Hostitel synchronizace_3777c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_57e386;Hostitel synchronizace_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3777c;Služba zasílání zpráv_3777c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_57e386;Služba zasílání zpráv_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3777c;Data kontaktů_3777c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_57e386;Data kontaktů_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by jaruska at 2016-03-05 00:01:40
Microsoft Windows 10 Home
System drive C: has 89 GB (59%) free of 152 GB
Total RAM: 1976 MB (23% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:01:50, on 5.3.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Users\jaruska\Downloads\RSIT (1).exe
C:\Program Files\trend micro\jaruska.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} (FormApps Plug-in) - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 9601 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d04115df370b41.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0ef8131ca2d13.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d12e1b59eb4c4d.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf913d3f7e0bb.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04115df6f8066.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d12e1b5a29dbf3.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForJirka.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJirka (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\jaruska\AppData\Roaming\Mozilla\Firefox\Profiles\rbp2nn0y.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-01-29 495708]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2010-01-08 186904]
"IgfxTray"=C:\Windows\system32\igfxtray.exe []
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe []
"Persistence"=C:\Windows\system32\igfxpers.exe []
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"NBAgent"=C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2012-01-13 1493288]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2011-10-25 74752]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 3280728]
"OneDrive"=C:\Users\jaruska\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-28 551112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-05 00:01:40 ----D---- C:\rsit
2016-03-01 20:34:34 ----D---- C:\ProgramData\ESET
2016-03-01 20:10:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-01 20:10:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-03-01 20:10:42 ----A---- C:\WINDOWS\system32\shell32.dll
2016-03-01 20:10:37 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-03-01 20:10:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-03-01 20:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-03-01 20:10:32 ----A---- C:\WINDOWS\system32\twinui.dll
2016-03-01 20:10:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-01 20:10:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-03-01 20:10:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-01 20:10:28 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-03-01 20:10:27 ----A---- C:\WINDOWS\system32\wininet.dll
2016-03-01 20:10:26 ----A---- C:\WINDOWS\system32\wmp.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-01 20:10:25 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-03-01 20:10:24 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-03-01 20:10:23 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-03-01 20:10:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-03-01 20:10:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-03-01 20:10:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-01 20:10:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-03-01 20:10:18 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-03-01 20:10:17 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-03-01 20:10:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-01 20:10:15 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2016-03-01 20:10:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-03-01 20:10:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\Unistore.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-01 20:10:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\invagent.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\InputService.dll
2016-03-01 20:10:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-01 20:10:10 ----A---- C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\wer.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\taskschd.dll
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-03-01 20:10:09 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\winload.exe
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\thumbcache.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-01 20:10:08 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-01 20:10:07 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-03-01 20:10:06 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\sqmapi.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-03-01 20:10:05 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-03-01 20:10:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-03-01 20:10:03 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-03-01 20:10:02 ----A---- C:\WINDOWS\system32\devinv.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-03-01 20:10:01 ----A---- C:\WINDOWS\system32\localspl.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2016-03-01 20:10:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-03-01 20:09:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-03-01 20:09:58 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-03-01 20:09:57 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\configurationclient.dll
2016-03-01 20:09:56 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-01 20:09:55 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-03-01 20:09:54 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-03-01 20:09:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-03-01 20:09:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\halmacpi.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\hal.dll
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-03-01 20:09:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\wermgr.exe
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-03-01 20:09:50 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-01 20:09:49 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-03-01 20:09:48 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\vaultcli.dll
2016-03-01 20:09:47 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\srpapi.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\provpackageapidll.dll
2016-03-01 20:09:46 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-03-01 20:09:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\werui.dll
2016-03-01 20:09:44 ----A---- C:\WINDOWS\system32\scapi.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-03-01 20:09:43 ----A---- C:\WINDOWS\system32\irmon.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-03-01 20:09:42 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-03-01 20:09:41 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-02-29 17:17:14 ----D---- C:\Program Files\trend micro
2016-02-27 23:18:55 ----A---- C:\ProgramData\ntuser.dat
2016-02-27 22:51:03 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-27 21:26:10 ----D---- C:\sh4ldr
2016-02-27 21:23:06 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-02-27 21:22:28 ----D---- C:\Program Files\Enigma Software Group
2016-02-26 16:00:21 ----D---- C:\WINDOWS\system32\SleepStudy
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\prm0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-24 23:35:25 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2016-02-24 23:21:12 ----D---- C:\ProgramData\Microsoft OneDrive
2016-02-24 23:13:58 ----D---- C:\ProgramData\USOShared
2016-02-24 23:13:34 ----SHD---- C:\Recovery
2016-02-24 23:11:52 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-02-24 23:06:35 ----ASH---- C:\hiberfil.sys
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\SpeechEngines
2016-02-24 22:53:26 ----SD---- C:\Users\jaruska\AppData\Roaming\Microsoft
2016-02-24 22:52:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-24 22:49:40 ----D---- C:\Program Files\Synaptics
2016-02-24 22:48:45 ----AS---- C:\WINDOWS\bootstat.dat
2016-02-24 22:48:12 ----D---- C:\WINDOWS\Prefetch
2016-02-24 22:47:26 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-24 22:47:15 ----ASH---- C:\swapfile.sys
2016-02-24 22:46:25 ----DC---- C:\WINDOWS\Panther
2016-02-24 22:41:35 ----D---- C:\Windows.old
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfps.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\mfds.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-02-24 22:40:11 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\EncDump.dll
2016-02-24 22:40:10 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-02-24 22:40:09 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-02-24 22:40:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-02-24 22:40:06 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-24 22:40:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-02-24 22:40:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2016-02-24 22:40:03 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-24 22:40:02 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\lpk.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\dciman32.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-02-24 22:39:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-24 22:39:56 ----A---- C:\WINDOWS\explorer.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wwancfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wsplib.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wshrm.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimserv.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wimgapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SRH.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\services.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\msorcl32.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\catsrvut.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-02-24 22:39:55 ----A---- C:\WINDOWS\system32\aepic.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wups2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\user32.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\schannel.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\qedit.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provtool.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provops.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mf.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-24 22:39:50 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\cdp.dll
2016-02-24 22:39:49 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-02-24 22:35:55 ----D---- C:\WINDOWS\system32\Microsoft
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\XPSViewer
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\msmq
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\BestPractices
2016-02-24 22:33:05 ----D---- C:\Program Files\Reference Assemblies
2016-02-24 22:33:05 ----D---- C:\inetpub
2016-02-24 22:33:05 ----AD---- C:\Program Files\MSBuild
2016-02-24 22:32:29 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-02-24 22:32:28 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-02-16 22:37:23 ----D---- C:\Program Files\Seznam.cz
2016-02-16 22:35:26 ----D---- C:\Program Files\Common Files\Borland Shared
2016-02-16 22:27:00 ----D---- C:\ProgramData\eXmind
2016-02-16 22:27:00 ----D---- C:\Program Files\ProFact 4.0
2016-02-16 21:06:00 ----D---- C:\Aplikace MB
2016-02-11 00:48:19 ----D---- C:\0d0187606d6f6c758193222fdca9
2016-02-10 21:39:06 ----A---- C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2016-02-10 21:36:44 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2016-02-10 21:36:32 ----A---- C:\WINDOWS\system32\mshtmlmedia.dll
2016-02-10 21:34:38 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
======List of files/folders modified in the last 1 month======
2016-03-05 00:01:18 ----D---- C:\WINDOWS\Temp
2016-03-04 23:54:10 ----D---- C:\WINDOWS\System32
2016-03-04 23:54:10 ----D---- C:\WINDOWS\INF
2016-03-04 23:49:18 ----D---- C:\Users\jaruska\AppData\Roaming\Skype
2016-03-04 23:48:56 ----HD---- C:\ProgramData
2016-03-04 23:48:56 ----A---- C:\ProgramData\HPWALog.txt
2016-03-04 23:48:01 ----D---- C:\WINDOWS\system32\sru
2016-03-04 23:38:28 ----D---- C:\WINDOWS\AppReadiness
2016-03-04 21:08:56 ----D---- C:\WINDOWS\system32\Tasks
2016-03-04 18:46:44 ----HD---- C:\Program Files\WindowsApps
2016-03-04 13:10:22 ----D---- C:\WINDOWS\system32\config
2016-03-04 12:47:30 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-04 09:31:22 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-03 23:10:37 ----D---- C:\Windows
2016-03-03 15:24:57 ----D---- C:\WINDOWS\WinSxS
2016-03-02 23:15:03 ----D---- C:\WINDOWS\CbsTemp
2016-03-02 23:14:37 ----SHD---- C:\System Volume Information
2016-03-02 22:02:39 ----RD---- C:\Program Files
2016-03-02 22:02:39 ----D---- C:\AdwCleaner
2016-03-02 13:27:06 ----D---- C:\WINDOWS\system32\drivers
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\wbem
2016-03-02 13:17:20 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\migration
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Dism
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\Boot
2016-03-02 13:17:19 ----D---- C:\WINDOWS\system32\appraiser
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Media
2016-03-02 13:17:16 ----RSD---- C:\WINDOWS\Fonts
2016-03-02 13:17:16 ----RD---- C:\WINDOWS\PurchaseDialog
2016-03-02 13:17:16 ----D---- C:\WINDOWS\bcastdvr
2016-03-02 13:17:16 ----D---- C:\WINDOWS\apppatch
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Portable Devices
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Multimedia Platform
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Media Player
2016-03-02 13:17:15 ----D---- C:\Program Files\Windows Journal
2016-03-02 13:17:15 ----D---- C:\Program Files\Internet Explorer
2016-03-01 21:10:22 ----RD---- C:\Users
2016-03-01 20:36:58 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:36:24 ----HD---- C:\WINDOWS\ELAMBKUP
2016-03-01 20:35:57 ----SHD---- C:\Config.Msi
2016-03-01 20:33:53 ----D---- C:\Program Files\ESET
2016-03-01 20:00:50 ----D---- C:\WINDOWS\system32\catroot2
2016-03-01 19:56:39 ----D---- C:\WINDOWS\Logs
2016-03-01 14:27:15 ----D---- C:\ProgramData\SoftwareDistribution
2016-03-01 14:27:11 ----D---- C:\WINDOWS\system32\WDI
2016-02-28 12:22:18 ----RSD---- C:\WINDOWS\assembly
2016-02-26 21:15:53 ----SHD---- C:\$Recycle.Bin
2016-02-25 15:59:36 ----SD---- C:\ProgramData\Microsoft
2016-02-25 08:32:13 ----D---- C:\WINDOWS\system32\restore
2016-02-24 23:36:46 ----RD---- C:\WINDOWS\DevicesFlow
2016-02-24 23:35:34 ----D---- C:\WINDOWS\OCR
2016-02-24 23:21:59 ----D---- C:\WINDOWS\AppCompat
2016-02-24 23:16:37 ----RD---- C:\WINDOWS\PrintDialog
2016-02-24 23:16:35 ----RD---- C:\WINDOWS\MiracastView
2016-02-24 23:16:18 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-24 23:16:02 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-24 23:14:52 ----D---- C:\WINDOWS\rescache
2016-02-24 23:14:02 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-02-24 23:13:36 ----D---- C:\Program Files\Windows NT
2016-02-24 23:12:24 ----D---- C:\WINDOWS\Registration
2016-02-24 23:12:03 ----D---- C:\WINDOWS\Tasks
2016-02-24 23:11:51 ----D---- C:\WINDOWS\system32\drivers\etc
2016-02-24 23:11:44 ----D---- C:\WINDOWS\system32\LogFiles
2016-02-24 23:09:33 ----D---- C:\WINDOWS\system32\spool
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-TW
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-HK
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\zh-CN
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\vs08
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\tr-TR
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\th-TH
2016-02-24 23:05:50 ----D---- C:\WINDOWS\system32\sv-SE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sl-SI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ru-RU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ro-RO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-PT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pt-BR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\pl-PL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nl-NL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\nb-NO
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lv-LV
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\lt-LT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ko-KR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\ja-JP
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\it-IT
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hu-HU
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\hr-HR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\he-IL
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fr-FR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\fi-FI
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\et-EE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\es-ES
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\en-US
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\el-GR
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\de-DE
2016-02-24 23:05:49 ----D---- C:\WINDOWS\system32\da-DK
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\bg-BG
2016-02-24 23:05:48 ----D---- C:\WINDOWS\system32\ar-SA
2016-02-24 23:05:45 ----D---- C:\WINDOWS\ShellNew
2016-02-24 22:59:19 ----D---- C:\WINDOWS\twain_32
2016-02-24 22:59:18 ----D---- C:\WINDOWS\system32\SPReview
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\oobe
2016-02-24 22:59:15 ----D---- C:\WINDOWS\system32\NDF
2016-02-24 22:59:14 ----D---- C:\WINDOWS\system32\IME
2016-02-24 22:59:13 ----D---- C:\WINDOWS\system32\EventProviders
2016-02-24 22:59:12 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-02-24 22:59:12 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-02-24 22:57:57 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-02-24 22:57:45 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-24 22:57:40 ----D---- C:\WINDOWS\schemas
2016-02-24 22:57:40 ----D---- C:\WINDOWS\PolicyDefinitions
2016-02-24 22:57:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-24 22:57:30 ----D---- C:\WINDOWS\Help
2016-02-24 22:57:28 ----D---- C:\WINDOWS\ehome
2016-02-24 22:57:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2016-02-24 22:57:27 ----D---- C:\WINDOWS\Cursors
2016-02-24 22:57:15 ----SHD---- C:\Program Files\Windows Sidebar
2016-02-24 22:57:15 ----D---- C:\Program Files\Windows Mail
2016-02-24 22:57:14 ----D---- C:\Program Files\WIDCOMM
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft.NET
2016-02-24 22:57:13 ----D---- C:\Program Files\Microsoft Games
2016-02-24 22:57:12 ----D---- C:\Program Files\DVD Maker
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files\System
2016-02-24 22:57:11 ----D---- C:\Program Files\Common Files
2016-02-24 22:57:11 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-02-24 22:55:14 ----D---- C:\WINDOWS\system32\Recovery
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2016-02-24 22:55:11 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-02-24 22:51:37 ----D---- C:\WINDOWS\system32\Sysprep
2016-02-24 22:48:31 ----D---- C:\WINDOWS\debug
2016-02-24 22:47:40 ----D---- C:\WINDOWS\ServiceProfiles
2016-02-24 22:41:07 ----SD---- C:\WINDOWS\system32\F12
2016-02-24 22:41:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-24 22:41:06 ----D---- C:\WINDOWS\Provisioning
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\MUI
2016-02-24 22:33:06 ----D---- C:\WINDOWS\system32\inetsrv
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2016-02-24 22:33:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqqm.dll
2016-02-24 22:32:59 ----A---- C:\WINDOWS\system32\mqoa.dll
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqsvc.exe
2016-02-24 22:32:57 ----A---- C:\WINDOWS\system32\mqbkup.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\wamregps.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\mqrt.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisRtl.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisrstap.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\iisreset.exe
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\ahadmin.dll
2016-02-24 22:32:55 ----A---- C:\WINDOWS\system32\admwprox.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqutil.dll
2016-02-24 22:32:53 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2016-02-24 22:02:15 ----HD---- C:\$WINDOWS.~BT
2016-02-23 09:21:24 ----D---- C:\WINDOWS\system32\wfp
2016-02-23 09:21:13 ----RD---- C:\Program Files\Skype
2016-02-23 09:21:12 ----AD---- C:\Program Files\Common Files\Skype
2016-02-23 09:19:50 ----D---- C:\ProgramData\Skype
2016-02-11 07:24:30 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 07:23:54 ----A---- C:\WINDOWS\win.ini
2016-02-11 07:13:41 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 06:58:32 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;@oem4.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-01-08 331288]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 56496]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 12464]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2011-03-04 45648]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 205800]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 146024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2015-11-20 131640]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-02-23 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 dtlitescsibus;@oem19.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-11 26168]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-11 40504]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 9036288]
R3 IntcHdmiAddService;@oem14.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-02-24 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-02-23 137216]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 rtl8192se;@net8192se32.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\WINDOWS\System32\drivers\rtl8192se.sys [2015-10-30 1113600]
R3 rtsuvc;@oem7.inf,%rtsuvc.DeviceDesc%;HP Webcam [2 MP Fixed]; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2010-01-30 73344]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14464]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-02-23 744448]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-24 96768]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [2016-02-27 16432]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-02-27 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-11-20 1983936]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2010-01-08 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-02-24 25088]
R2 NAUpdate;Nero Update; C:\Program Files\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_3777c;Hostitel synchronizace_3777c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1082200]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_15a80c5;Hostitel synchronizace_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1a1168;Hostitel synchronizace_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_20a2f3;Hostitel synchronizace_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3305d0;Hostitel synchronizace_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3a3b6;Hostitel synchronizace_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_50453;Hostitel synchronizace_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_57e386;Hostitel synchronizace_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9cc799;Hostitel synchronizace_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_b66cc6;Hostitel synchronizace_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-02-27 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15a80c5;Služba zasílání zpráv_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1a1168;Služba zasílání zpráv_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_20a2f3;Služba zasílání zpráv_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3305d0;Služba zasílání zpráv_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3777c;Služba zasílání zpráv_3777c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3a3b6;Služba zasílání zpráv_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_50453;Služba zasílání zpráv_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_57e386;Služba zasílání zpráv_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9cc799;Služba zasílání zpráv_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_b66cc6;Služba zasílání zpráv_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_15a80c5;Data kontaktů_15a80c5; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1a1168;Data kontaktů_1a1168; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_20a2f3;Data kontaktů_20a2f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3305d0;Data kontaktů_3305d0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3777c;Data kontaktů_3777c; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3a3b6;Data kontaktů_3a3b6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_50453;Data kontaktů_50453; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_57e386;Data kontaktů_57e386; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9cc799;Data kontaktů_9cc799; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_b66cc6;Data kontaktů_b66cc6; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-10-30 45752]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontroulu logu
Tohle je, bohužel, vlastnost desítek, jiná verze to neudělá. Zkuste obnovu systému k datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?