Prosím o preventivní kontrolu logu

[lnpa]

Zdravím, PC je mírně zasekaný, prosím o preventivní kontrolu! děkuji moc

Logfile of random's system information tool 1.10 (written by random/random)
Run by Miroslav at 2016-05-11 12:30:14
Microsoft Windows 10 Home
System drive C: has 348 GB (76%) free of 458 GB
Total RAM: 3984 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:30:21, on 11. 5. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\trend micro\Miroslav.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{7ac3ead0-a54c-451f-9bc1-98ff159872fa}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgfwsa.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11459 bytes

======Listing Processes======




c:\PROGRA~2\AVG\Av\avgrsa.exe /boot
C:\Program Files (x86)\AVG\Av\avgcsrva.exe /pipeName=44800c66-0200-0000-ccf9-b30526484060 /binaryPath="C:\Program Files (x86)\AVG\Av\\" /logPath=C:\WINDOWS\system32\config\systemprofile\AppData\Local\Avg\log\av16 /logCfgPath=C:\ProgramData\Avg\log\av16



C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
dashost.exe {d3621180-8fab-4252-8e875f6144428a0a}
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\AVG\Av\avgwdsvca.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\AVG\Av\avgfwsa.exe"
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"

"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\AVG\Av\avgnsa.exe"
"C:\Program Files (x86)\AVG\Av\avgemca.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
sihost.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /ANDREA_BF_BYPASS
"C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
/fmw.trayonly
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe"

taskhostw.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=50.0.2661.94 --handshake-handle=0x1a8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5996.0.294054620\452767938" --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,15,24,53 --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/BrotliEncoding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledSlowStartLargeReduction/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithModuleLoadAnalysis/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_30/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="5996.2.755369107\771404794" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/BrotliEncoding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PreRead/Default/*QUIC/EnabledSlowStartLargeReduction/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithModuleLoadAnalysis/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_30/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="5996.4.1190690245\1594039928" /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel

C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.168_none_76587b40265ca57e\TiWorker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/BrotliEncoding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PreRead/Default/*QUIC/EnabledSlowStartLargeReduction/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithModuleLoadAnalysis/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_30/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="5996.5.465398047\33160193" /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 596 600 608 8192 604
"C:\Users\Miroslav\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForMiroslav.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForMiroslav (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-02-06 8781568]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-02-06 1407744]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-02-06 3936936]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-04-25 554176]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-04-20 7943072]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]
"Uninstall C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]
"Uninstall C:\Users\Miroslav\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-04-14 186640]
"AVG_UI"=C:\Program Files (x86)\AVG\Av\avuirunnerx.exe [2016-04-20 32528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-05-11 12:30:14 ----D---- C:\rsit
2016-05-11 12:30:14 ----D---- C:\Program Files\trend micro
2016-05-09 22:51:32 ----D---- C:\ProgramData\Auslogics
2016-05-09 20:28:09 ----D---- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-05-09 20:11:17 ----D---- C:\Users\Miroslav\AppData\Roaming\SUPERAntiSpyware.com
2016-05-09 20:11:08 ----A---- C:\WINDOWS\SYSWOW64\tlxF551.tmp
2016-05-09 20:10:29 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2016-05-09 20:10:29 ----AD---- C:\Program Files\SUPERAntiSpyware
2016-04-13 22:44:02 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-04-13 22:44:01 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-04-13 22:44:01 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-04-13 22:43:58 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-04-13 22:43:57 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-04-13 22:43:57 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-04-13 22:43:56 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-04-13 22:43:55 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-04-13 22:43:54 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-04-13 22:43:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-04-13 22:43:53 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-04-13 22:43:53 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-04-13 22:43:52 ----A---- C:\WINDOWS\system32\wininet.dll
2016-04-13 22:43:52 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-04-13 22:43:51 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-04-13 22:43:49 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-04-13 22:43:48 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-04-13 22:43:47 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-04-13 22:43:46 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-04-13 22:43:46 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-04-13 22:43:45 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-04-13 22:43:43 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-04-13 22:43:41 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-04-13 22:43:39 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-04-13 22:43:38 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-04-13 22:43:37 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-04-13 22:43:36 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-04-13 22:43:35 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-04-13 22:43:34 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 22:43:33 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-04-13 22:43:31 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-04-13 22:42:59 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-04-13 22:42:58 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-04-13 22:42:58 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-04-13 22:42:58 ----A---- C:\WINDOWS\system32\SRH.dll
2016-04-13 22:42:56 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-13 22:42:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-04-13 22:42:44 ----A---- C:\WINDOWS\system32\twinui.dll
2016-04-13 22:42:42 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-04-13 22:42:41 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-04-13 22:42:41 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-04-13 22:42:41 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-04-13 22:42:40 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-04-13 22:42:40 ----A---- C:\WINDOWS\system32\InputService.dll
2016-04-13 22:42:39 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-04-13 22:42:31 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-04-13 22:42:30 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-13 22:42:27 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-04-13 22:42:25 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-13 22:42:23 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-04-13 22:42:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-04-13 22:42:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-04-13 22:42:21 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-04-13 22:42:20 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-04-13 22:42:19 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-04-13 22:42:18 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-13 22:42:18 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-04-13 22:42:18 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-04-13 22:42:17 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-04-13 22:42:17 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-13 22:42:16 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-04-13 22:42:16 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-04-13 22:42:15 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-04-13 22:42:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-04-13 22:42:15 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-13 22:42:14 ----A---- C:\WINDOWS\system32\esent.dll
2016-04-13 22:42:13 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-04-13 22:42:13 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-04-13 22:42:12 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-04-13 22:42:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-13 22:42:11 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-13 22:42:10 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-13 22:42:10 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-04-13 22:42:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-04-13 22:42:09 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-04-13 22:42:09 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-04-13 22:42:09 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-04-13 22:42:07 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-04-13 22:42:07 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-13 22:42:06 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-04-13 22:42:06 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-13 22:42:05 ----A---- C:\WINDOWS\system32\winload.exe
2016-04-13 22:42:01 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-13 22:42:00 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-04-13 22:41:59 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-04-13 22:41:57 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-04-13 22:41:57 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-13 22:41:55 ----A---- C:\WINDOWS\system32\winresume.exe
2016-04-13 22:41:54 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-04-13 22:41:53 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-04-13 22:41:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-13 22:41:52 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-13 22:41:52 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-13 22:41:51 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-04-13 22:41:49 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-04-13 22:41:48 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-04-13 22:41:47 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-04-13 22:41:46 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-04-13 22:41:45 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-04-13 22:41:44 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-04-13 22:41:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-04-13 22:41:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-04-13 22:41:41 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-04-13 22:41:40 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-04-13 22:41:40 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-04-13 22:41:39 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-04-13 22:41:39 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-04-13 22:41:39 ----A---- C:\WINDOWS\SYSWOW64\AccountsRt.dll
2016-04-13 22:41:39 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-04-13 22:41:39 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-04-13 22:41:38 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-04-13 22:41:38 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-04-13 22:41:38 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-13 22:41:38 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-04-13 22:41:37 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-04-13 22:41:37 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-04-13 22:41:36 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-04-13 22:41:35 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-13 22:41:34 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-04-13 22:41:34 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-04-13 22:41:33 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2016-04-13 22:41:33 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-04-13 22:41:33 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-13 22:41:33 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-13 22:41:32 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-13 22:41:32 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-04-13 22:41:31 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-04-13 22:41:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-04-13 22:41:30 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-13 22:41:29 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-04-13 22:41:28 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-13 22:41:28 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-04-13 22:41:28 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-04-13 22:41:22 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-04-13 22:41:22 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-04-13 22:41:21 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-13 22:41:20 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-04-13 22:41:16 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-04-13 22:41:15 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-04-13 22:41:15 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-04-13 22:41:15 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-13 22:41:15 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-04-13 22:41:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-04-13 22:41:13 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-04-13 22:41:13 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2016-04-13 22:41:13 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-04-13 22:41:13 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-04-13 22:41:12 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-13 22:41:12 ----A---- C:\WINDOWS\system32\msi.dll
2016-04-13 22:41:12 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-04-13 22:41:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-04-13 22:41:10 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-04-13 22:41:09 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-04-13 22:41:07 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-04-13 22:41:07 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2016-04-13 22:41:06 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-04-13 22:41:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-04-13 22:41:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-04-13 22:41:05 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-04-13 22:41:04 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-13 22:41:04 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-04-13 22:41:04 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-04-13 22:41:04 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-13 22:41:03 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-04-13 22:41:03 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-04-13 22:41:03 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-13 22:41:03 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-04-13 22:41:03 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-04-13 22:41:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-04-13 22:40:59 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-13 22:40:59 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-04-13 22:40:59 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-04-13 22:40:59 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-04-13 22:40:59 ----A---- C:\WINDOWS\system32\fveui.dll
2016-04-13 22:40:59 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-04-13 22:40:58 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-13 22:40:58 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-13 22:40:58 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-04-13 22:40:58 ----A---- C:\WINDOWS\system32\omadmapi.dll
2016-04-13 22:40:58 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-04-13 22:40:57 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-04-13 22:40:57 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-04-13 22:40:57 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-04-13 22:40:56 ----A---- C:\WINDOWS\SYSWOW64\srvcli.dll
2016-04-13 22:40:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-04-13 22:40:55 ----A---- C:\WINDOWS\SYSWOW64\netapi32.dll
2016-04-13 22:40:55 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-04-13 22:40:55 ----A---- C:\WINDOWS\system32\srvcli.dll
2016-04-13 22:40:55 ----A---- C:\WINDOWS\system32\netapi32.dll
2016-04-13 22:40:54 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-04-13 22:40:54 ----A---- C:\WINDOWS\system32\wkscli.dll
2016-04-13 22:40:53 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-04-13 22:40:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2016-04-13 22:40:52 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-04-13 22:40:51 ----A---- C:\WINDOWS\SYSWOW64\wkscli.dll
2016-04-13 22:40:51 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-04-13 22:40:51 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-04-13 22:40:51 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-13 22:40:50 ----A---- C:\WINDOWS\system32\oleacc.dll
2016-04-13 22:40:50 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-04-13 22:40:49 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2016-04-13 22:40:49 ----A---- C:\WINDOWS\system32\easinvoker.exe
2016-04-13 22:40:48 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-04-13 22:40:47 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-04-13 22:40:47 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-04-13 22:40:46 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-04-13 22:40:46 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-13 22:40:46 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-04-13 22:40:45 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-04-13 22:40:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-04-13 22:40:44 ----A---- C:\WINDOWS\system32\wsdchngr.dll
2016-04-13 22:40:44 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-04-13 22:40:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 22:40:43 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-04-13 22:40:42 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-04-13 22:40:42 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-04-13 22:40:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 22:40:38 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-04-13 22:40:38 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-04-13 22:40:38 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-04-13 22:40:37 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-13 22:40:37 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-13 22:40:37 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-13 22:40:36 ----A---- C:\WINDOWS\SYSWOW64\wsdchngr.dll
2016-04-13 22:40:35 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2016-04-13 22:40:34 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-13 22:40:32 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-04-13 22:40:31 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-04-13 22:40:30 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-04-13 22:40:30 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-04-13 22:40:29 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-13 22:40:29 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-04-13 22:40:29 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-04-13 22:40:28 ----A---- C:\WINDOWS\SYSWOW64\browcli.dll
2016-04-13 22:40:28 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-13 22:40:28 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-04-13 22:40:28 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-04-13 22:40:28 ----A---- C:\WINDOWS\system32\browser.dll
2016-04-13 22:40:28 ----A---- C:\WINDOWS\system32\browcli.dll
2016-04-13 22:40:27 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-04-13 22:40:27 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-13 22:40:27 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-04-13 22:40:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-13 22:40:26 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2016-04-13 22:40:26 ----A---- C:\WINDOWS\system32\tbauth.dll
2016-04-13 22:40:26 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2016-04-13 22:40:26 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2016-04-13 22:40:26 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-04-13 22:40:25 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-13 22:40:25 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2016-04-13 22:40:22 ----A---- C:\WINDOWS\system32\samlib.dll
2016-04-13 22:40:19 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-13 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2016-04-13 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2016-04-13 22:40:18 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-04-13 22:40:18 ----A---- C:\WINDOWS\system32\wups.dll
2016-04-13 22:40:18 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-13 22:40:18 ----A---- C:\WINDOWS\system32\moshost.dll
2016-04-13 22:40:18 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-04-13 22:40:18 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-04-13 22:40:17 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-04-13 22:40:17 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-13 22:40:17 ----A---- C:\WINDOWS\system32\mos.dll
2016-04-13 22:40:17 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-13 22:40:17 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\OnDemandConnRouteHelper.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\oleacchooks.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\system32\oleacchooks.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-04-13 22:40:16 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-13 22:40:15 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-04-13 22:40:15 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-04-13 22:40:15 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-04-13 22:40:15 ----A---- C:\WINDOWS\system32\MTF.dll
2016-04-13 22:40:15 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-04-13 22:40:15 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-04-13 22:40:15 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-04-13 22:40:15 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-04-13 22:40:15 ----A---- C:\WINDOWS\system32\AppCapture.dll

======List of files/folders modified in the last 1 month======

2016-05-11 12:30:20 ----D---- C:\WINDOWS\Prefetch
2016-05-11 12:30:14 ----RD---- C:\Program Files
2016-05-11 12:30:10 ----D---- C:\WINDOWS\Temp
2016-05-11 12:28:43 ----D---- C:\WINDOWS\system32\config
2016-05-11 12:27:40 ----D---- C:\ProgramData\MFAData
2016-05-11 12:24:29 ----D---- C:\WINDOWS\system32\sru
2016-05-10 00:39:51 ----SHD---- C:\WINDOWS\Installer
2016-05-10 00:38:34 ----D---- C:\WINDOWS\Microsoft.NET
2016-05-10 00:28:37 ----D---- C:\ProgramData\ProductData
2016-05-10 00:25:38 ----RD---- C:\Program Files (x86)
2016-05-10 00:04:08 ----D---- C:\Windows
2016-05-09 23:12:36 ----SHD---- C:\System Volume Information
2016-05-09 22:51:32 ----HD---- C:\ProgramData
2016-05-09 22:46:26 ----D---- C:\WINDOWS\system32\Tasks
2016-05-09 22:43:25 ----D---- C:\WINDOWS\INF
2016-05-09 22:43:21 ----D---- C:\WINDOWS\debug
2016-05-09 21:26:29 ----D---- C:\ProgramData\Microsoft Help
2016-05-09 20:59:03 ----D---- C:\WINDOWS\SysWOW64
2016-05-09 20:53:10 ----A---- C:\WINDOWS\APCBT.ini
2016-05-09 20:51:36 ----D---- C:\Users\Miroslav\AppData\Roaming\Seznam.cz
2016-05-09 20:51:25 ----D---- C:\Program Files (x86)\Seznam.cz
2016-05-09 20:49:45 ----D---- C:\Program Files (x86)\IObit
2016-05-09 20:49:39 ----D---- C:\WINDOWS\system32\drivers
2016-05-09 20:47:31 ----D---- C:\WINDOWS\Tasks
2016-05-09 20:30:18 ----D---- C:\WINDOWS\System32
2016-05-09 17:00:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-08 19:39:28 ----D---- C:\WINDOWS\AppReadiness
2016-05-07 15:20:16 ----D---- C:\WINDOWS\system32\NDF
2016-05-07 15:08:27 ----HD---- C:\Program Files\WindowsApps
2016-05-03 21:39:58 ----D---- C:\WINDOWS\system32\catroot2
2016-05-02 17:54:30 ----D---- C:\WINDOWS\SoftwareDistribution
2016-04-17 13:01:49 ----D---- C:\WINDOWS\WinSxS
2016-04-17 12:46:13 ----RSD---- C:\WINDOWS\assembly
2016-04-17 12:35:36 ----D---- C:\WINDOWS\CbsTemp
2016-04-14 21:29:18 ----D---- C:\WINDOWS\rescache
2016-04-14 20:46:11 ----D---- C:\WINDOWS\system32\DriverStore
2016-04-14 20:18:37 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-04-14 20:18:27 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-04-14 20:18:26 ----D---- C:\WINDOWS\system32\cs-CZ
2016-04-14 20:18:26 ----D---- C:\WINDOWS\system32\Boot
2016-04-14 20:18:26 ----D---- C:\WINDOWS\system32\appraiser
2016-04-14 20:18:24 ----D---- C:\WINDOWS\PolicyDefinitions
2016-04-14 20:18:22 ----D---- C:\WINDOWS\bcastdvr
2016-04-14 20:18:22 ----D---- C:\WINDOWS\AppPatch
2016-04-14 10:35:28 ----D---- C:\WINDOWS\system32\MRT
2016-04-14 10:28:08 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\WINDOWS\system32\DRIVERS\avgidsha.sys [2016-01-26 272304]
R0 Avgloga;AVG Logging Driver; C:\WINDOWS\system32\DRIVERS\avgloga.sys [2016-02-16 360736]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx64.sys [2016-03-29 248576]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx64.sys [2016-04-14 51968]
R0 Avguniva;AVG Universal Driver; C:\WINDOWS\system32\DRIVERS\avguniva.sys [2016-04-18 71936]
R0 MBI;@oem90.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2016-01-09 32736]
R1 Avgdiska;AVG Disk Driver; C:\WINDOWS\system32\DRIVERS\avgdiska.sys [2016-02-16 162592]
R1 Avgfwfd;@oem94.inf,%AvgfwfdService_Desc%;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwd6a.sys [2015-08-29 97208]
R1 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\avgidsdrivera.sys [2016-04-20 307456]
R1 Avgldx64;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx64.sys [2015-10-21 284080]
R1 Avgwfpa;AVG Firewall Driver; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [2015-12-16 315840]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-01-19 26528]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-03-29 112640]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-03-29 84992]
R3 clwvd;@oem29.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys [2014-01-28 41704]
R3 GPIO;@oem89.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpioe.sys [2016-01-09 51128]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-15 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-02-06 4686592]
R3 IntcDAud;@oem9.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-03-23 454416]
R3 iwdbus;@oem84.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 netr28x;@oem55.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2015-06-12 2554528]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 181248]
R3 RSP2STOR;@oem86.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2016-02-06 302808]
R3 rt640x64;@oem45.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-02-06 888064]
R3 rtbth;@oem31.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2015-06-03 1219200]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-02-06 33960]
R3 SynTP;@oem35.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-02-06 610472]
R3 TXEIx64;@oem91.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\WINDOWS\System32\drivers\TXEIx64.sys [2016-01-09 146232]
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\WINDOWS\system32\DRIVERS\avgboota.sys [2016-01-07 21632]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-03-29 954368]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-29 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-11-06 632168]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RTL8168;@oem13.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2015-07-20 881368]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2013-12-13 29936]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2016-02-06 106952]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\Av\avgfwsa.exe [2016-04-20 1999224]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [2016-04-20 5155904]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-04-14 1074448]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [2016-04-20 710232]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-15 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-01 733696]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-11-10 2934048]
R2 OneSyncSvc_1b982d;Hostitel synchronizace_1b982d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-02-06 307456]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-15 291744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_1b982d;Data kontaktů_1b982d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-20 154440]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_32bdc;Hostitel synchronizace_32bdc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_55c1c;Hostitel synchronizace_55c1c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 AvgAMPS;AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [2016-04-20 638968]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-20 154440]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-01 822232]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1b982d;Služba zasílání zpráv_1b982d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_32bdc;Služba zasílání zpráv_32bdc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_55c1c;Služba zasílání zpráv_55c1c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_32bdc;Data kontaktů_32bdc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_55c1c;Data kontaktů_55c1c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

[Roli]

Zdravím, nedávej logy do CODE, blbě se to čte.

V první řadě odinstaluj SUPERAntiSpyware a AVG, je dost možné že bude potřeba použít AVG Remover.

AVG nahraď jiným antivirem,

Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

[lnpa]

Ahoj, omlouvám se.

AVG (bylo placené) jsem smazal přes tu utilitu, nainstaloval jsem Aviru. SAS jsem odinstaloval.

CCleaner - registry vyčištěny několikrát, startup programy promazány, balast pročištěn.

AdwCleaner log níže:

# AdwCleaner v5.116 - Log soubor vytvořen 12/05/2016 o 11:24:00
# Aktualizováno 09/05/2016 by Xplode
# Databáze : 2016-05-09.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Jméno uživatele : Miroslav - NOTEBOOK-MIREK
# Spuštěno z : C:\Users\Miroslav\Downloads\adwcleaner_5.116.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****

[-] Složka smazáno : C:\ProgramData\Avg_Update_0215tb

***** [ Soubory ] *****


***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úkoly ] *****


***** [ Registr ] *****

[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

***** [ Webové prohlížeče ] *****


*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1400 bytes] - [12/05/2016 11:24:00]
C:\AdwCleaner\AdwCleaner[S1].txt - [1582 bytes] - [12/05/2016 11:20:07]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1546 bytes] ##########

[Roli]

AVG (bylo placené) jsem smazal přes tu utilitu, nainstaloval jsem Aviru.

Tos měl říct, že je AVG placené to bychom to s ním do konce platnosti nějak přečkali.

Nyní použij Mbam z mého podpisu a dej mi sem z něj log po smazání nepořádku.