Prosim o kontrolu NB
Napsal: 02 srp 2015 16:05
zadam o kontrolu. mam PC po bratrovi a sekaji se hry a celkove slape pomalu. Dekuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pavel a Káťa at 2015-08-02 16:51:13
Microsoft Windows 8.1
System drive C: has 279 GB (30%) free of 933 GB
Total RAM: 8084 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:51:18, on 2. 8. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Pavel a Káťa.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0523__yaie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck
\HPNetworkCheckPlugin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka
cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [BeginInteractiveOSUpgrade] C:\Windows\system32\wuauclt.exe /BeginInteractiveOSUpgrade
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-
DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99
-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root
\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) -
http://catalog.update.microsoft.com/v7/ ... 3756490665
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash
\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem17.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock
Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine
Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management
Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe
O23 - Service: Overwolf Updater Service (OverwolfUpdaterService) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file
missing)
--
End of file - 12997 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
C:\Windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
dashost.exe {e1366e35-cfcb-47c7-a04e7e8fcc5a08dd}
taskeng.exe {9404926E-99B2-4329-8637-2F83B6ACA60F}
"c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\diMaster.dll"
/prefetch:1
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe" /c /a /s UserSession
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Windows\system32\wuauclt.exe"
"C:\Windows\system32\wuauclt.exe" /RunHandlerComServer
"C:\Windows\SoftwareDistribution\Download\dad15f60943c647c0a9b2ca2614f41c1\WindowsUpdateBox.exe" /ClassId fbe04adf-b43b-4ea1-b681-f99a8001d832 /Install /Update
/ClientId 2bf138ee-1119-44c4-b72b-f38e109d9b79
"C:\$Windows.~BT\Sources\SetupHost.Exe" /Install /Update /Quiet /ProcessId 4556 /InstallFile "C:\$Windows.~BT\Sources\Install.esd" /progressCLSID fbe04adf-b43b-4ea1-
b681-f99a8001d832 "/ClientId" "2bf138ee-1119-44c4-b72b-f38e109d9b79" /WUCachedFileName "10240.16384.150709-1700.th1_CLIENTCORE_RET_x64fre_cs-cz.esd" /SuccessId
4946a59d-c61f-4a8e-9f47-edf30c9e4828
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" "http://sitedirector.symantec.com/932743328/default.aspx?
prod=NIS.21.7.0.11&layout=esd&ssdcat=180&lcid=1029&plid=2&plgid=2&product=Norton%20Internet
%20Security&version=21.7.0.11&plang=sym:CZ&layouttype=ESD&buildname=Retail&heartbeatID=CBC3CD7B-6505-45E3-A323-
2042B2EFA6D4&env=prod&vendorid=32430&skup=21244208&skum=21294355&skuf=21228659&cipherid=0&endpointid=%7BCBC3CD7B-6505-45E3-A323-
2042B2EFA6D4%7D&partnerid=32430&lic_type=16&lic_attr=21124114&psn=V8XX4BBC4RVF&osvers=6.3&oslocale=iso:CZE&oslang=iso:CZE&os=windows"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\TEMP\09DA37A3-088D-480B-8D43-BE7592D9441C\dismhost.exe {D3E95D31-A97A-46B8-ACE7-897920F55144}
"C:\Users\Petr\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\gaquijli.default
prefs.js - "browser.search.useDBForOrder" - "false"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\gaquijli.default\searchplugins\
yahoo.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-06-09 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-06-26 932152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-06-16 2335448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-06-26 664888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-05 392344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-06-26 664888]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-11-09 7194840]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-01 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-01 771056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-01 770032]
"Zune Launcher"=C:\Program Files\Zune\ZuneLauncher.exe [2011-08-05 163552]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-07-24 2895552]
"Overwolf"=C:\Program Files (x86)\Overwolf\Overwolf.exe [2014-02-16 37632]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2015-06-10 456576]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-06-01 8358680]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"BeginInteractiveOSUpgrade"=C:\Windows\system32\wuauclt.exe [2015-07-09 136904]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-04-10 95192]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2015-06-24 448520]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-07-15 767176]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2015-06-27 1861640]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2015-07-27 56080]
"HPMessageService"=C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [2014-03-26 475448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-01 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-08-02 12:40:13 ----D---- C:\ProgramData\ATI
2015-08-02 12:32:47 ----D---- C:\Program Files (x86)\ATI Technologies
2015-08-02 12:29:27 ----D---- C:\Windows\LastGood.Tmp
2015-08-02 10:06:38 ----A---- C:\Windows\system32\aspnet_counters.dll
2015-08-02 10:06:34 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2015-08-02 10:00:34 ----A---- C:\Windows\system32\appraiser.dll
2015-07-26 20:18:50 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-26 20:18:50 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-26 20:18:50 ----A---- C:\Windows\system32\atmlib.dll
2015-07-26 20:18:50 ----A---- C:\Windows\system32\atmfd.dll
2015-07-19 22:10:59 ----D---- C:\Program Files (x86)\LG Electronics
2015-07-19 14:44:02 ----D---- C:\Users\Petr\AppData\Roaming\Raptr
2015-07-19 14:44:02 ----D---- C:\Program Files (x86)\Raptr
2015-07-19 14:38:11 ----A---- C:\Windows\system32\drivers\nvflash.sys
2015-07-19 12:59:58 ----A---- C:\Windows\system32\WSShared.dll
2015-07-19 12:59:57 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-19 12:59:57 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-19 12:59:57 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-19 12:59:42 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-19 12:59:42 ----A---- C:\Windows\system32\msftedit.dll
2015-07-19 12:59:38 ----A---- C:\Windows\system32\invagent.dll
2015-07-19 12:59:38 ----A---- C:\Windows\system32\generaltel.dll
2015-07-19 12:59:38 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-19 12:59:38 ----A---- C:\Windows\system32\aeinv.dll
2015-07-19 12:59:37 ----A---- C:\Windows\system32\devinv.dll
2015-07-19 12:59:36 ----A---- C:\Windows\system32\aepdu.dll
2015-07-19 12:59:36 ----A---- C:\Windows\system32\acmigration.dll
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-19 12:59:30 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-19 12:59:28 ----A---- C:\Windows\system32\profsvc.dll
2015-07-19 12:59:26 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-19 12:59:26 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-19 12:59:25 ----A---- C:\Windows\system32\shell32.dll
2015-07-19 12:59:24 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-19 12:59:23 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-19 12:59:22 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-19 12:59:21 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-19 12:56:57 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-19 12:49:27 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-19 12:49:17 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-19 12:49:16 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-19 12:11:13 ----D---- C:\Program Files\Common Files\AV
2015-07-16 04:12:26 ----A---- C:\Windows\system32\amdave64.dll
2015-07-16 04:12:24 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2015-07-16 04:12:20 ----A---- C:\Windows\system32\amdmiracast.dll
2015-07-16 04:12:18 ----A---- C:\Windows\system32\amdhcp64.dll
2015-07-16 04:12:16 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2015-07-16 04:12:14 ----A---- C:\Windows\system32\atimpc64.dll
2015-07-16 04:12:12 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2015-07-16 04:12:02 ----A---- C:\Windows\system32\amdpcom64.dll
2015-07-16 04:12:00 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2015-07-16 04:11:56 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2015-07-16 04:11:52 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2015-07-16 04:11:52 ----A---- C:\Windows\system32\atiu9p64.dll
2015-07-16 04:11:44 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2015-07-16 04:11:34 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2015-07-16 04:11:18 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2015-07-16 04:11:10 ----A---- C:\Windows\system32\atiumd6a.dll
2015-07-16 04:11:06 ----A---- C:\Windows\system32\atiumd64.dll
2015-07-16 04:09:00 ----A---- C:\Windows\system32\drivers\amdacpksd.sys
2015-07-16 04:06:36 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2015-07-16 04:01:52 ----A---- C:\Windows\system32\clinfo.exe
2015-07-16 04:01:46 ----A---- C:\Windows\system32\amdocl64.dll
2015-07-16 03:59:34 ----A---- C:\Windows\system32\OpenCL.dll
2015-07-16 03:59:32 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-07-16 03:58:02 ----A---- C:\Windows\system32\amdocl12cl64.dll
2015-07-16 03:57:54 ----A---- C:\Windows\SYSWOW64\amdocl12cl.dll
2015-07-16 03:35:18 ----A---- C:\Windows\system32\mantle64.dll
2015-07-16 03:35:14 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2015-07-16 03:35:08 ----A---- C:\Windows\system32\amdmantle64.dll
2015-07-16 03:30:36 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2015-07-16 03:29:20 ----A---- C:\Windows\system32\amdhdl64.dll
2015-07-16 03:29:18 ----A---- C:\Windows\SYSWOW64\amdhdl32.dll
2015-07-16 03:28:36 ----A---- C:\Windows\system32\atio6axx.dll
2015-07-16 03:26:58 ----A---- C:\Windows\system32\mantleaxl64.dll
2015-07-16 03:26:56 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2015-07-16 03:25:04 ----A---- C:\Windows\system32\amdmmcl6.dll
2015-07-16 03:25:02 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2015-07-16 03:22:52 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2015-07-16 03:21:48 ----A---- C:\Windows\system32\atiapfxx.exe
2015-07-16 03:21:46 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2015-07-16 03:21:46 ----A---- C:\Windows\system32\aticalrt64.dll
2015-07-16 03:21:44 ----A---- C:\Windows\system32\aticalcl64.dll
2015-07-16 03:21:42 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2015-07-16 03:21:38 ----A---- C:\Windows\system32\aticaldd64.dll
2015-07-16 03:20:46 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2015-07-16 03:17:30 ----A---- C:\Windows\system32\atidemgy.dll
2015-07-16 03:17:28 ----A---- C:\Windows\system32\atieah64.exe
2015-07-16 03:17:26 ----A---- C:\Windows\SYSWOW64\atieah32.exe
2015-07-16 03:17:26 ----A---- C:\Windows\system32\amdgfxinfo64.dll
2015-07-16 03:17:24 ----A---- C:\Windows\SYSWOW64\amdgfxinfo32.dll
2015-07-16 03:17:24 ----A---- C:\Windows\system32\atimuixx.dll
2015-07-16 03:17:22 ----A---- C:\Windows\system32\atieclxx.exe
2015-07-16 03:17:14 ----A---- C:\Windows\system32\atiesrxx.exe
2015-07-16 03:17:00 ----A---- C:\Windows\system32\atitmm64.dll
2015-07-16 03:15:04 ----A---- C:\Windows\system32\atisamu64.dll
2015-07-16 03:15:00 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2015-07-16 03:14:04 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2015-07-16 03:13:40 ----A---- C:\Windows\system32\atiadlxx.dll
2015-07-16 03:13:36 ----A---- C:\Windows\SYSWOW64\atiadlxx.dll
2015-07-16 03:13:32 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2015-07-16 03:13:32 ----A---- C:\Windows\system32\atiglpxx.dll
2015-07-16 03:13:32 ----A---- C:\Windows\system32\atig6pxx.dll
2015-07-16 03:13:30 ----A---- C:\Windows\system32\atig6txx.dll
2015-07-16 03:13:26 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2015-07-16 03:12:52 ----A---- C:\Windows\system32\coinst_15.20.dll
2015-07-16 03:12:08 ----A---- C:\Windows\system32\hsa-thunk64.dll
2015-07-16 03:12:06 ----A---- C:\Windows\SYSWOW64\hsa-thunk.dll
2015-07-14 20:41:08 ----A---- C:\Windows\system32\win32k.sys
2015-07-14 20:41:06 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-14 20:41:06 ----A---- C:\Windows\system32\msi.dll
2015-07-14 20:41:06 ----A---- C:\Windows\system32\authui.dll
2015-07-14 20:41:05 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-14 20:41:05 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-14 20:41:05 ----A---- C:\Windows\system32\msiexec.exe
2015-07-14 20:41:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-14 20:41:02 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-14 20:41:02 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-14 20:41:02 ----A---- C:\Windows\system32\kerberos.dll
2015-07-14 20:41:02 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-14 20:41:02 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-14 20:41:01 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-14 20:41:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-14 20:41:01 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-14 20:41:01 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-14 20:41:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-14 20:41:01 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-14 20:41:01 ----A---- C:\Windows\system32\certcli.dll
2015-07-14 20:40:40 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-14 20:40:40 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-14 20:40:40 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-14 20:40:36 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-14 20:40:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-14 20:40:35 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-14 20:40:35 ----A---- C:\Windows\system32\wucltux.dll
2015-07-14 20:40:35 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-14 20:40:35 ----A---- C:\Windows\system32\wuapp.exe
2015-07-14 20:40:35 ----A---- C:\Windows\system32\wuapi.dll
2015-07-14 20:40:35 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-14 20:40:34 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-14 20:40:34 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-14 20:40:34 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-14 20:40:34 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-14 20:40:34 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-14 20:40:34 ----A---- C:\Windows\system32\wudriver.dll
2015-07-14 20:40:33 ----A---- C:\Windows\system32\wups2.dll
2015-07-14 20:40:33 ----A---- C:\Windows\system32\wups.dll
2015-07-14 20:39:43 ----A---- C:\Windows\system32\wininet.dll
2015-07-14 20:39:43 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-14 20:39:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-14 20:39:40 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-14 20:39:40 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-14 20:39:40 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-14 20:39:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-14 20:39:39 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-14 20:39:39 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-14 20:39:39 ----A---- C:\Windows\system32\vbscript.dll
2015-07-14 20:39:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-14 20:39:39 ----A---- C:\Windows\system32\ieui.dll
2015-07-14 20:39:38 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-14 20:39:38 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-14 20:39:38 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-14 20:39:38 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-14 20:39:37 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-14 20:39:37 ----A---- C:\Windows\system32\msrating.dll
2015-07-14 20:39:37 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-14 20:39:36 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-14 20:39:36 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-14 20:39:36 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-14 20:39:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-14 20:39:36 ----A---- C:\Windows\system32\webcheck.dll
2015-07-14 20:39:36 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-14 20:39:36 ----A---- C:\Windows\system32\iepeers.dll
2015-07-14 20:39:36 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-14 20:39:35 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-14 20:39:35 ----A---- C:\Windows\system32\jscript.dll
2015-07-14 20:38:47 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-14 20:38:47 ----A---- C:\Windows\system32\gdi32.dll
2015-07-14 20:38:46 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-14 20:38:46 ----A---- C:\Windows\system32\ole32.dll
2015-07-14 20:38:45 ----A---- C:\Windows\system32\jscript9.dll
2015-07-14 20:38:42 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-14 20:38:38 ----A---- C:\Windows\system32\mshtml.dll
2015-07-14 20:38:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-14 20:38:09 ----A---- C:\Windows\system32\ieframe.dll
2015-07-14 20:38:05 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-14 20:38:02 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-14 20:38:02 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-14 20:38:02 ----A---- C:\Windows\system32\urlmon.dll
2015-07-14 20:38:02 ----A---- C:\Windows\system32\iertutil.dll
2015-07-14 20:37:45 ----A---- C:\Windows\system32\apphelp.dll
2015-07-13 17:19:34 ----A---- C:\Windows\system32\amde31a.dat
2015-07-13 17:19:20 ----A---- C:\Windows\system32\ativce03.dat
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
2015-07-10 18:12:42 ----D---- C:\Users\Petr\AppData\Roaming\Opera Software
2015-07-10 18:11:02 ----D---- C:\Program Files (x86)\Opera
2015-07-10 09:40:10 ----A---- C:\Windows\system32\amdicdxx.dat
2015-07-09 01:39:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-07 20:33:45 ----D---- C:\Program Files (x86)\Adobe
2015-07-06 21:33:18 ----A---- C:\Windows\system32\ativce02.dat
======List of files/folders modified in the last 1 month======
2015-08-02 16:51:17 ----D---- C:\Program Files\trend micro
2015-08-02 16:49:27 ----D---- C:\Windows\Temp
2015-08-02 16:49:04 ----D---- C:\Windows\Inf
2015-08-02 16:39:54 ----D---- C:\Windows\system32\config
2015-08-02 16:37:41 ----D---- C:\Windows\Microsoft.NET
2015-08-02 16:35:03 ----D---- C:\Windows\WinSxS
2015-08-02 16:26:31 ----D---- C:\Windows\Prefetch
2015-08-02 16:00:00 ----D---- C:\Windows\system32\sru
2015-08-02 15:39:34 ----HD---- C:\Program Files\WindowsApps
2015-08-02 15:39:33 ----D---- C:\Windows\AppReadiness
2015-08-02 15:39:24 ----DC---- C:\Windows\Panther
2015-08-02 14:56:20 ----D---- C:\Program Files (x86)\World of tanks
2015-08-02 12:40:13 ----HD---- C:\ProgramData
2015-08-02 12:38:38 ----RD---- C:\Windows\System32
2015-08-02 12:38:38 ----D---- C:\Windows\SysWOW64
2015-08-02 12:38:30 ----SHD---- C:\System Volume Information
2015-08-02 12:38:24 ----D---- C:\Windows
2015-08-02 12:37:24 ----D---- C:\Program Files (x86)\Steam
2015-08-02 12:34:33 ----SHD---- C:\Windows\Installer
2015-08-02 12:32:47 ----RD---- C:\Program Files (x86)
2015-08-02 12:32:27 ----D---- C:\Windows\system32\DriverStore
2015-08-02 12:32:27 ----D---- C:\Windows\system32\catroot
2015-08-02 12:29:51 ----D---- C:\Windows\system32\drivers
2015-08-02 12:27:54 ----D---- C:\Program Files\AMD
2015-08-02 12:23:21 ----D---- C:\AMD
2015-08-02 11:45:58 ----RSD---- C:\Windows\assembly
2015-08-02 10:39:59 ----D---- C:\Program Files (x86)\WarThunder
2015-08-02 10:34:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-02 10:29:05 ----D---- C:\Windows\Tasks
2015-08-02 10:29:05 ----D---- C:\Windows\system32\Tasks
2015-08-02 10:10:52 ----D---- C:\Windows\Logs
2015-08-02 10:10:41 ----D---- C:\Windows\CbsTemp
2015-08-02 09:50:22 ----D---- C:\ProgramData\Package Cache
2015-07-30 19:50:38 ----SD---- C:\Windows\system32\GWX
2015-07-27 23:11:05 ----D---- C:\Windows\rescache
2015-07-26 23:39:30 ----RD---- C:\Windows\ToastData
2015-07-26 23:39:30 ----D---- C:\Windows\WinStore
2015-07-26 20:31:39 ----D---- C:\Users\Petr\AppData\Roaming\vlc
2015-07-26 16:21:40 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-07-26 16:21:12 ----D---- C:\ProgramData\Microsoft Help
2015-07-26 16:19:18 ----D---- C:\Program Files\Microsoft Office 15
2015-07-22 16:29:23 ----SD---- C:\Windows\system32\CompatTel
2015-07-22 16:29:23 ----D---- C:\Windows\system32\wbem
2015-07-22 16:29:23 ----D---- C:\Windows\system32\appraiser
2015-07-22 16:29:23 ----D---- C:\Windows\apppatch
2015-07-22 16:29:09 ----D---- C:\Windows\system32\MRT
2015-07-22 16:20:26 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-20 00:14:50 ----D---- C:\AdwCleaner
2015-07-19 23:58:56 ----RD---- C:\Program Files
2015-07-19 23:57:31 ----D---- C:\Windows\system32\drivers\etc
2015-07-19 23:29:14 ----D---- C:\ProgramData\RogueKiller
2015-07-19 22:42:32 ----RSD---- C:\Windows\Fonts
2015-07-19 22:42:32 ----D---- C:\Program Files (x86)\Hewlett-Packard
2015-07-19 22:42:28 ----D---- C:\SWSetup
2015-07-19 15:47:56 ----D---- C:\Windows\debug
2015-07-19 12:59:08 ----D---- C:\Windows\system32\catroot2
2015-07-19 12:11:13 ----D---- C:\Program Files\Common Files
2015-07-19 12:06:50 ----D---- C:\Windows\SoftwareDistribution
2015-07-19 12:03:06 ----D---- C:\Windows\system32\cs-CZ
2015-07-19 06:43:11 ----D---- C:\Program Files (x86)\T-Mobile
2015-07-19 06:41:47 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2015-07-19 06:41:23 ----D---- C:\ProgramData\Sony Mobile
2015-07-19 06:41:20 ----D---- C:\Program Files (x86)\Sony Mobile
2015-07-19 06:41:11 ----D---- C:\Program Files (x86)\Nokia
2015-07-19 06:41:11 ----D---- C:\Program Files (x86)\Common Files
2015-07-19 06:33:20 ----DC---- C:\Windows\system32\DRVSTORE
2015-07-16 04:11:58 ----A---- C:\Windows\system32\atiuxp64.dll
2015-07-16 04:11:48 ----A---- C:\Windows\system32\aticfx64.dll
2015-07-16 04:11:38 ----A---- C:\Windows\system32\atidxx64.dll
2015-07-16 04:11:26 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2015-07-16 04:00:38 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2015-07-16 03:13:36 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2015-07-16 03:13:28 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2015-07-15 16:59:25 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-15 16:59:23 ----D---- C:\Program Files\Internet Explorer
2015-07-15 16:59:23 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-14 21:02:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-12 11:06:39 ----D---- C:\Program Files (x86)\Lenovo
2015-07-12 10:54:01 ----D---- C:\Program Files\CCleaner
2015-07-10 18:16:56 ----D---- C:\Users\Petr\AppData\Roaming\AVG
2015-07-10 18:14:49 ----D---- C:\ProgramData\AVG
2015-07-10 18:10:48 ----D---- C:\ProgramData\DivX
2015-07-10 18:10:48 ----D---- C:\Program Files (x86)\DivX
2015-07-10 13:38:04 ----D---- C:\ProgramData\Norton
2015-07-09 18:00:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-07-09 16:28:25 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-08 23:38:40 ----D---- C:\Windows\system32\NDF
2015-07-07 20:33:30 ----D---- C:\ProgramData\Adobe
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem20.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2013-12-13 36608]
R0 hpdskflt;@oem17.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-22 644968]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1507000.00B\SYMDS64.SYS [2013-10-30 493656]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1507000.00B\SYMEFA64.SYS [2014-03-04 1148120]
R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\BASHDefs\20150728.001\BHDrvx64.sys [2015-07-23 1650936]
R1 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1507000.00B\ccSetx64.sys [2014-02-21 162392]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2015-07-30 498512]
R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\IPSDefs\20150731.001\IDSvia64.sys [2015-06-20 692984]
R1 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1507000.00B\SRTSP64.SYS [2014-08-26 876248]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1507000.00B\SRTSPX64.SYS [2014-08-26 37592]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1507000.00B\Ironx64.SYS [2014-08-06 266968]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1507000.00B\SYMNETS.SYS [2014-02-18 593112]
R3 Accelerometer;@oem17.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-07-16 21622272]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-07-16 665088]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2015-07-30 153936]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-01 4208640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-09 3577560]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-01-01 449496]
R3 iwdbus;@oem13.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-10-29 27032]
R3 MEIx64;@oem22.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-11-09 99288]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20150801.005\ENG64.SYS [2015-06-26 138488]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20150801.005\EX64.SYS [2015-06-26 2146040]
R3 netr28x;@oem5.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-11-26 2483376]
R3 RTL8168;@oem37.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-11-17 830680]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-11-17 34544]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2014-06-17 177752]
R3 SynTP;@oem40.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-11-17 524016]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S0 SymELAM;Symantec ELAM Driver; C:\Windows\system32\drivers\NISx64\1507000.00B\SymELAM.sys [2013-10-30 23568]
S3 AndnetBus;@oem104.inf,%LGSI.Service.Desc%;LGE Mobile USB Composite Device; C:\Windows\System32\drivers\lgandnetbus64.sys [2014-10-10 20992]
S3 AndNetDiag;@oem99.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2014-10-10 30720]
S3 ANDNetModem;@oem101.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2014-10-10 37376]
S3 BtAudioBusSrv;@oem47.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\Windows\System32\Drivers\BtAudioBus.sys []
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\Windows\System32\Drivers\BtL2caScoIf.sys []
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2013-08-22 1200128]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2013-08-22 77312]
S3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys []
S3 dg_ssudbus;@oem94.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22
108800]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ggflt;@oem93.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\Windows\System32\drivers\ggflt.sys [2014-10-19 16088]
S3 ggsomc;@oem93.inf,%SvcDesc%;SOMC USB Flash Driver; C:\Windows\System32\drivers\ggsomc.sys [2014-10-19 30424]
S3 huawei_enumerator;huawei_enumerator; C:\Windows\System32\drivers\ew_jubusenum.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-09-10 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-10-12 114304]
S3 intaud_WaveExtensible;@oem12.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-10-29 39320]
S3 massfilter;Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys []
S3 netr28ux;@netr28ux.inf,%Generic.Service.DispName%;RT2870 – ovladač rozšiřitelné karty USB pro bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\netr28ux.sys [2013-
06-18 2408208]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSP2STOR;@oem4.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2013-11-17 290008]
S3 rtbth;@oem14.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys []
S3 RTSPER;Realtek PCIe CardReader Driver; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-11-17 418008]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2013-02-06 28400]
S3 ssudmdm;@oem95.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2013-10-20 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-07-16 246784]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2014-10-29 38792]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2015-07-01 2753720]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 hpsrv;@oem17.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2012-09-24 31040]
R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2014-03-26 469304]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-22 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11
733696]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-08-09 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
[2013-08-09 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-08-
09 390616]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe [2015-03-07 276336]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-04-24 76888]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-02-20 239176]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-
24 169752]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-14 268976]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16
50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-01 279024]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 116648]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client
\SocketHeciServer.exe [2013-05-11 822232]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19
30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-09 148136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-02-01 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 OverwolfUpdaterService;Overwolf Updater Service; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2014-01-30 98560]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pavel a Káťa at 2015-08-02 16:51:13
Microsoft Windows 8.1
System drive C: has 279 GB (30%) free of 933 GB
Total RAM: 8084 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:51:18, on 2. 8. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Pavel a Káťa.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0523__yaie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck
\HPNetworkCheckPlugin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka
cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [BeginInteractiveOSUpgrade] C:\Windows\system32\wuauclt.exe /BeginInteractiveOSUpgrade
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-
DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99
-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root
\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) -
http://catalog.update.microsoft.com/v7/ ... 3756490665
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash
\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem17.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock
Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine
Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management
Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe
O23 - Service: Overwolf Updater Service (OverwolfUpdaterService) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file
missing)
--
End of file - 12997 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
C:\Windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
dashost.exe {e1366e35-cfcb-47c7-a04e7e8fcc5a08dd}
taskeng.exe {9404926E-99B2-4329-8637-2F83B6ACA60F}
"c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\diMaster.dll"
/prefetch:1
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe" /c /a /s UserSession
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Windows\system32\wuauclt.exe"
"C:\Windows\system32\wuauclt.exe" /RunHandlerComServer
"C:\Windows\SoftwareDistribution\Download\dad15f60943c647c0a9b2ca2614f41c1\WindowsUpdateBox.exe" /ClassId fbe04adf-b43b-4ea1-b681-f99a8001d832 /Install /Update
/ClientId 2bf138ee-1119-44c4-b72b-f38e109d9b79
"C:\$Windows.~BT\Sources\SetupHost.Exe" /Install /Update /Quiet /ProcessId 4556 /InstallFile "C:\$Windows.~BT\Sources\Install.esd" /progressCLSID fbe04adf-b43b-4ea1-
b681-f99a8001d832 "/ClientId" "2bf138ee-1119-44c4-b72b-f38e109d9b79" /WUCachedFileName "10240.16384.150709-1700.th1_CLIENTCORE_RET_x64fre_cs-cz.esd" /SuccessId
4946a59d-c61f-4a8e-9f47-edf30c9e4828
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" "http://sitedirector.symantec.com/932743328/default.aspx?
prod=NIS.21.7.0.11&layout=esd&ssdcat=180&lcid=1029&plid=2&plgid=2&product=Norton%20Internet
%20Security&version=21.7.0.11&plang=sym:CZ&layouttype=ESD&buildname=Retail&heartbeatID=CBC3CD7B-6505-45E3-A323-
2042B2EFA6D4&env=prod&vendorid=32430&skup=21244208&skum=21294355&skuf=21228659&cipherid=0&endpointid=%7BCBC3CD7B-6505-45E3-A323-
2042B2EFA6D4%7D&partnerid=32430&lic_type=16&lic_attr=21124114&psn=V8XX4BBC4RVF&osvers=6.3&oslocale=iso:CZE&oslang=iso:CZE&os=windows"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\TEMP\09DA37A3-088D-480B-8D43-BE7592D9441C\dismhost.exe {D3E95D31-A97A-46B8-ACE7-897920F55144}
"C:\Users\Petr\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\gaquijli.default
prefs.js - "browser.search.useDBForOrder" - "false"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\gaquijli.default\searchplugins\
yahoo.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-06-09 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\21.7.0.11\coIEPlg.dll [2015-06-26 932152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-06-16 2335448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-06-26 664888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-05 392344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\coIEPlg.dll [2015-06-26 664888]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-11-09 7194840]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-01 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-01 771056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-01 770032]
"Zune Launcher"=C:\Program Files\Zune\ZuneLauncher.exe [2011-08-05 163552]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-07-24 2895552]
"Overwolf"=C:\Program Files (x86)\Overwolf\Overwolf.exe [2014-02-16 37632]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2015-06-10 456576]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-06-01 8358680]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"BeginInteractiveOSUpgrade"=C:\Windows\system32\wuauclt.exe [2015-07-09 136904]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-04-10 95192]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2015-06-24 448520]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-07-15 767176]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2015-06-27 1861640]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2015-07-27 56080]
"HPMessageService"=C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [2014-03-26 475448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-01 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-08-02 12:40:13 ----D---- C:\ProgramData\ATI
2015-08-02 12:32:47 ----D---- C:\Program Files (x86)\ATI Technologies
2015-08-02 12:29:27 ----D---- C:\Windows\LastGood.Tmp
2015-08-02 10:06:38 ----A---- C:\Windows\system32\aspnet_counters.dll
2015-08-02 10:06:34 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2015-08-02 10:00:34 ----A---- C:\Windows\system32\appraiser.dll
2015-07-26 20:18:50 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-26 20:18:50 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-26 20:18:50 ----A---- C:\Windows\system32\atmlib.dll
2015-07-26 20:18:50 ----A---- C:\Windows\system32\atmfd.dll
2015-07-19 22:10:59 ----D---- C:\Program Files (x86)\LG Electronics
2015-07-19 14:44:02 ----D---- C:\Users\Petr\AppData\Roaming\Raptr
2015-07-19 14:44:02 ----D---- C:\Program Files (x86)\Raptr
2015-07-19 14:38:11 ----A---- C:\Windows\system32\drivers\nvflash.sys
2015-07-19 12:59:58 ----A---- C:\Windows\system32\WSShared.dll
2015-07-19 12:59:57 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-19 12:59:57 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-19 12:59:57 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-19 12:59:42 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-19 12:59:42 ----A---- C:\Windows\system32\msftedit.dll
2015-07-19 12:59:38 ----A---- C:\Windows\system32\invagent.dll
2015-07-19 12:59:38 ----A---- C:\Windows\system32\generaltel.dll
2015-07-19 12:59:38 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-19 12:59:38 ----A---- C:\Windows\system32\aeinv.dll
2015-07-19 12:59:37 ----A---- C:\Windows\system32\devinv.dll
2015-07-19 12:59:36 ----A---- C:\Windows\system32\aepdu.dll
2015-07-19 12:59:36 ----A---- C:\Windows\system32\acmigration.dll
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-19 12:59:33 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-19 12:59:30 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-19 12:59:28 ----A---- C:\Windows\system32\profsvc.dll
2015-07-19 12:59:26 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-19 12:59:26 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-19 12:59:25 ----A---- C:\Windows\system32\shell32.dll
2015-07-19 12:59:24 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-19 12:59:23 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-19 12:59:22 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-19 12:59:21 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-19 12:56:57 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-19 12:49:27 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-19 12:49:17 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-19 12:49:16 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-19 12:11:13 ----D---- C:\Program Files\Common Files\AV
2015-07-16 04:12:26 ----A---- C:\Windows\system32\amdave64.dll
2015-07-16 04:12:24 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2015-07-16 04:12:20 ----A---- C:\Windows\system32\amdmiracast.dll
2015-07-16 04:12:18 ----A---- C:\Windows\system32\amdhcp64.dll
2015-07-16 04:12:16 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2015-07-16 04:12:14 ----A---- C:\Windows\system32\atimpc64.dll
2015-07-16 04:12:12 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2015-07-16 04:12:02 ----A---- C:\Windows\system32\amdpcom64.dll
2015-07-16 04:12:00 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2015-07-16 04:11:56 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2015-07-16 04:11:52 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2015-07-16 04:11:52 ----A---- C:\Windows\system32\atiu9p64.dll
2015-07-16 04:11:44 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2015-07-16 04:11:34 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2015-07-16 04:11:18 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2015-07-16 04:11:10 ----A---- C:\Windows\system32\atiumd6a.dll
2015-07-16 04:11:06 ----A---- C:\Windows\system32\atiumd64.dll
2015-07-16 04:09:00 ----A---- C:\Windows\system32\drivers\amdacpksd.sys
2015-07-16 04:06:36 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2015-07-16 04:01:52 ----A---- C:\Windows\system32\clinfo.exe
2015-07-16 04:01:46 ----A---- C:\Windows\system32\amdocl64.dll
2015-07-16 03:59:34 ----A---- C:\Windows\system32\OpenCL.dll
2015-07-16 03:59:32 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-07-16 03:58:02 ----A---- C:\Windows\system32\amdocl12cl64.dll
2015-07-16 03:57:54 ----A---- C:\Windows\SYSWOW64\amdocl12cl.dll
2015-07-16 03:35:18 ----A---- C:\Windows\system32\mantle64.dll
2015-07-16 03:35:14 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2015-07-16 03:35:08 ----A---- C:\Windows\system32\amdmantle64.dll
2015-07-16 03:30:36 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2015-07-16 03:29:20 ----A---- C:\Windows\system32\amdhdl64.dll
2015-07-16 03:29:18 ----A---- C:\Windows\SYSWOW64\amdhdl32.dll
2015-07-16 03:28:36 ----A---- C:\Windows\system32\atio6axx.dll
2015-07-16 03:26:58 ----A---- C:\Windows\system32\mantleaxl64.dll
2015-07-16 03:26:56 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2015-07-16 03:25:04 ----A---- C:\Windows\system32\amdmmcl6.dll
2015-07-16 03:25:02 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2015-07-16 03:22:52 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2015-07-16 03:21:48 ----A---- C:\Windows\system32\atiapfxx.exe
2015-07-16 03:21:46 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2015-07-16 03:21:46 ----A---- C:\Windows\system32\aticalrt64.dll
2015-07-16 03:21:44 ----A---- C:\Windows\system32\aticalcl64.dll
2015-07-16 03:21:42 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2015-07-16 03:21:38 ----A---- C:\Windows\system32\aticaldd64.dll
2015-07-16 03:20:46 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2015-07-16 03:17:30 ----A---- C:\Windows\system32\atidemgy.dll
2015-07-16 03:17:28 ----A---- C:\Windows\system32\atieah64.exe
2015-07-16 03:17:26 ----A---- C:\Windows\SYSWOW64\atieah32.exe
2015-07-16 03:17:26 ----A---- C:\Windows\system32\amdgfxinfo64.dll
2015-07-16 03:17:24 ----A---- C:\Windows\SYSWOW64\amdgfxinfo32.dll
2015-07-16 03:17:24 ----A---- C:\Windows\system32\atimuixx.dll
2015-07-16 03:17:22 ----A---- C:\Windows\system32\atieclxx.exe
2015-07-16 03:17:14 ----A---- C:\Windows\system32\atiesrxx.exe
2015-07-16 03:17:00 ----A---- C:\Windows\system32\atitmm64.dll
2015-07-16 03:15:04 ----A---- C:\Windows\system32\atisamu64.dll
2015-07-16 03:15:00 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2015-07-16 03:14:04 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2015-07-16 03:13:40 ----A---- C:\Windows\system32\atiadlxx.dll
2015-07-16 03:13:36 ----A---- C:\Windows\SYSWOW64\atiadlxx.dll
2015-07-16 03:13:32 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2015-07-16 03:13:32 ----A---- C:\Windows\system32\atiglpxx.dll
2015-07-16 03:13:32 ----A---- C:\Windows\system32\atig6pxx.dll
2015-07-16 03:13:30 ----A---- C:\Windows\system32\atig6txx.dll
2015-07-16 03:13:26 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2015-07-16 03:12:52 ----A---- C:\Windows\system32\coinst_15.20.dll
2015-07-16 03:12:08 ----A---- C:\Windows\system32\hsa-thunk64.dll
2015-07-16 03:12:06 ----A---- C:\Windows\SYSWOW64\hsa-thunk.dll
2015-07-14 20:41:08 ----A---- C:\Windows\system32\win32k.sys
2015-07-14 20:41:06 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-14 20:41:06 ----A---- C:\Windows\system32\msi.dll
2015-07-14 20:41:06 ----A---- C:\Windows\system32\authui.dll
2015-07-14 20:41:05 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-14 20:41:05 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-14 20:41:05 ----A---- C:\Windows\system32\msiexec.exe
2015-07-14 20:41:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-14 20:41:02 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-14 20:41:02 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-14 20:41:02 ----A---- C:\Windows\system32\kerberos.dll
2015-07-14 20:41:02 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-14 20:41:02 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-14 20:41:01 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-14 20:41:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-14 20:41:01 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-14 20:41:01 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-14 20:41:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-14 20:41:01 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-14 20:41:01 ----A---- C:\Windows\system32\certcli.dll
2015-07-14 20:40:40 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-14 20:40:40 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-14 20:40:40 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-14 20:40:36 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-14 20:40:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-14 20:40:35 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-14 20:40:35 ----A---- C:\Windows\system32\wucltux.dll
2015-07-14 20:40:35 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-14 20:40:35 ----A---- C:\Windows\system32\wuapp.exe
2015-07-14 20:40:35 ----A---- C:\Windows\system32\wuapi.dll
2015-07-14 20:40:35 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-14 20:40:34 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-14 20:40:34 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-14 20:40:34 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-14 20:40:34 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-14 20:40:34 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-14 20:40:34 ----A---- C:\Windows\system32\wudriver.dll
2015-07-14 20:40:33 ----A---- C:\Windows\system32\wups2.dll
2015-07-14 20:40:33 ----A---- C:\Windows\system32\wups.dll
2015-07-14 20:39:43 ----A---- C:\Windows\system32\wininet.dll
2015-07-14 20:39:43 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-14 20:39:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-14 20:39:40 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-14 20:39:40 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-14 20:39:40 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-14 20:39:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-14 20:39:39 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-14 20:39:39 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-14 20:39:39 ----A---- C:\Windows\system32\vbscript.dll
2015-07-14 20:39:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-14 20:39:39 ----A---- C:\Windows\system32\ieui.dll
2015-07-14 20:39:38 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-14 20:39:38 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-14 20:39:38 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-14 20:39:38 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-14 20:39:37 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-14 20:39:37 ----A---- C:\Windows\system32\msrating.dll
2015-07-14 20:39:37 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-14 20:39:36 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-14 20:39:36 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-14 20:39:36 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-14 20:39:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-14 20:39:36 ----A---- C:\Windows\system32\webcheck.dll
2015-07-14 20:39:36 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-14 20:39:36 ----A---- C:\Windows\system32\iepeers.dll
2015-07-14 20:39:36 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-14 20:39:35 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-14 20:39:35 ----A---- C:\Windows\system32\jscript.dll
2015-07-14 20:38:47 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-14 20:38:47 ----A---- C:\Windows\system32\gdi32.dll
2015-07-14 20:38:46 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-14 20:38:46 ----A---- C:\Windows\system32\ole32.dll
2015-07-14 20:38:45 ----A---- C:\Windows\system32\jscript9.dll
2015-07-14 20:38:42 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-14 20:38:38 ----A---- C:\Windows\system32\mshtml.dll
2015-07-14 20:38:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-14 20:38:09 ----A---- C:\Windows\system32\ieframe.dll
2015-07-14 20:38:05 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-14 20:38:02 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-14 20:38:02 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-14 20:38:02 ----A---- C:\Windows\system32\urlmon.dll
2015-07-14 20:38:02 ----A---- C:\Windows\system32\iertutil.dll
2015-07-14 20:37:45 ----A---- C:\Windows\system32\apphelp.dll
2015-07-13 17:19:34 ----A---- C:\Windows\system32\amde31a.dat
2015-07-13 17:19:20 ----A---- C:\Windows\system32\ativce03.dat
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT
2015-07-10 18:12:42 ----D---- C:\Users\Petr\AppData\Roaming\Opera Software
2015-07-10 18:11:02 ----D---- C:\Program Files (x86)\Opera
2015-07-10 09:40:10 ----A---- C:\Windows\system32\amdicdxx.dat
2015-07-09 01:39:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-07 20:33:45 ----D---- C:\Program Files (x86)\Adobe
2015-07-06 21:33:18 ----A---- C:\Windows\system32\ativce02.dat
======List of files/folders modified in the last 1 month======
2015-08-02 16:51:17 ----D---- C:\Program Files\trend micro
2015-08-02 16:49:27 ----D---- C:\Windows\Temp
2015-08-02 16:49:04 ----D---- C:\Windows\Inf
2015-08-02 16:39:54 ----D---- C:\Windows\system32\config
2015-08-02 16:37:41 ----D---- C:\Windows\Microsoft.NET
2015-08-02 16:35:03 ----D---- C:\Windows\WinSxS
2015-08-02 16:26:31 ----D---- C:\Windows\Prefetch
2015-08-02 16:00:00 ----D---- C:\Windows\system32\sru
2015-08-02 15:39:34 ----HD---- C:\Program Files\WindowsApps
2015-08-02 15:39:33 ----D---- C:\Windows\AppReadiness
2015-08-02 15:39:24 ----DC---- C:\Windows\Panther
2015-08-02 14:56:20 ----D---- C:\Program Files (x86)\World of tanks
2015-08-02 12:40:13 ----HD---- C:\ProgramData
2015-08-02 12:38:38 ----RD---- C:\Windows\System32
2015-08-02 12:38:38 ----D---- C:\Windows\SysWOW64
2015-08-02 12:38:30 ----SHD---- C:\System Volume Information
2015-08-02 12:38:24 ----D---- C:\Windows
2015-08-02 12:37:24 ----D---- C:\Program Files (x86)\Steam
2015-08-02 12:34:33 ----SHD---- C:\Windows\Installer
2015-08-02 12:32:47 ----RD---- C:\Program Files (x86)
2015-08-02 12:32:27 ----D---- C:\Windows\system32\DriverStore
2015-08-02 12:32:27 ----D---- C:\Windows\system32\catroot
2015-08-02 12:29:51 ----D---- C:\Windows\system32\drivers
2015-08-02 12:27:54 ----D---- C:\Program Files\AMD
2015-08-02 12:23:21 ----D---- C:\AMD
2015-08-02 11:45:58 ----RSD---- C:\Windows\assembly
2015-08-02 10:39:59 ----D---- C:\Program Files (x86)\WarThunder
2015-08-02 10:34:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-02 10:29:05 ----D---- C:\Windows\Tasks
2015-08-02 10:29:05 ----D---- C:\Windows\system32\Tasks
2015-08-02 10:10:52 ----D---- C:\Windows\Logs
2015-08-02 10:10:41 ----D---- C:\Windows\CbsTemp
2015-08-02 09:50:22 ----D---- C:\ProgramData\Package Cache
2015-07-30 19:50:38 ----SD---- C:\Windows\system32\GWX
2015-07-27 23:11:05 ----D---- C:\Windows\rescache
2015-07-26 23:39:30 ----RD---- C:\Windows\ToastData
2015-07-26 23:39:30 ----D---- C:\Windows\WinStore
2015-07-26 20:31:39 ----D---- C:\Users\Petr\AppData\Roaming\vlc
2015-07-26 16:21:40 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-07-26 16:21:12 ----D---- C:\ProgramData\Microsoft Help
2015-07-26 16:19:18 ----D---- C:\Program Files\Microsoft Office 15
2015-07-22 16:29:23 ----SD---- C:\Windows\system32\CompatTel
2015-07-22 16:29:23 ----D---- C:\Windows\system32\wbem
2015-07-22 16:29:23 ----D---- C:\Windows\system32\appraiser
2015-07-22 16:29:23 ----D---- C:\Windows\apppatch
2015-07-22 16:29:09 ----D---- C:\Windows\system32\MRT
2015-07-22 16:20:26 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-20 00:14:50 ----D---- C:\AdwCleaner
2015-07-19 23:58:56 ----RD---- C:\Program Files
2015-07-19 23:57:31 ----D---- C:\Windows\system32\drivers\etc
2015-07-19 23:29:14 ----D---- C:\ProgramData\RogueKiller
2015-07-19 22:42:32 ----RSD---- C:\Windows\Fonts
2015-07-19 22:42:32 ----D---- C:\Program Files (x86)\Hewlett-Packard
2015-07-19 22:42:28 ----D---- C:\SWSetup
2015-07-19 15:47:56 ----D---- C:\Windows\debug
2015-07-19 12:59:08 ----D---- C:\Windows\system32\catroot2
2015-07-19 12:11:13 ----D---- C:\Program Files\Common Files
2015-07-19 12:06:50 ----D---- C:\Windows\SoftwareDistribution
2015-07-19 12:03:06 ----D---- C:\Windows\system32\cs-CZ
2015-07-19 06:43:11 ----D---- C:\Program Files (x86)\T-Mobile
2015-07-19 06:41:47 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2015-07-19 06:41:23 ----D---- C:\ProgramData\Sony Mobile
2015-07-19 06:41:20 ----D---- C:\Program Files (x86)\Sony Mobile
2015-07-19 06:41:11 ----D---- C:\Program Files (x86)\Nokia
2015-07-19 06:41:11 ----D---- C:\Program Files (x86)\Common Files
2015-07-19 06:33:20 ----DC---- C:\Windows\system32\DRVSTORE
2015-07-16 04:11:58 ----A---- C:\Windows\system32\atiuxp64.dll
2015-07-16 04:11:48 ----A---- C:\Windows\system32\aticfx64.dll
2015-07-16 04:11:38 ----A---- C:\Windows\system32\atidxx64.dll
2015-07-16 04:11:26 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2015-07-16 04:00:38 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2015-07-16 03:13:36 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2015-07-16 03:13:28 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2015-07-15 16:59:25 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-15 16:59:23 ----D---- C:\Program Files\Internet Explorer
2015-07-15 16:59:23 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-14 21:02:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-12 11:06:39 ----D---- C:\Program Files (x86)\Lenovo
2015-07-12 10:54:01 ----D---- C:\Program Files\CCleaner
2015-07-10 18:16:56 ----D---- C:\Users\Petr\AppData\Roaming\AVG
2015-07-10 18:14:49 ----D---- C:\ProgramData\AVG
2015-07-10 18:10:48 ----D---- C:\ProgramData\DivX
2015-07-10 18:10:48 ----D---- C:\Program Files (x86)\DivX
2015-07-10 13:38:04 ----D---- C:\ProgramData\Norton
2015-07-09 18:00:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-07-09 16:28:25 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-08 23:38:40 ----D---- C:\Windows\system32\NDF
2015-07-07 20:33:30 ----D---- C:\ProgramData\Adobe
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem20.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2013-12-13 36608]
R0 hpdskflt;@oem17.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-22 644968]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1507000.00B\SYMDS64.SYS [2013-10-30 493656]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1507000.00B\SYMEFA64.SYS [2014-03-04 1148120]
R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\BASHDefs\20150728.001\BHDrvx64.sys [2015-07-23 1650936]
R1 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1507000.00B\ccSetx64.sys [2014-02-21 162392]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2015-07-30 498512]
R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\IPSDefs\20150731.001\IDSvia64.sys [2015-06-20 692984]
R1 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1507000.00B\SRTSP64.SYS [2014-08-26 876248]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1507000.00B\SRTSPX64.SYS [2014-08-26 37592]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1507000.00B\Ironx64.SYS [2014-08-06 266968]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1507000.00B\SYMNETS.SYS [2014-02-18 593112]
R3 Accelerometer;@oem17.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-07-16 21622272]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-07-16 665088]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2015-07-30 153936]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-01 4208640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-09 3577560]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-01-01 449496]
R3 iwdbus;@oem13.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-10-29 27032]
R3 MEIx64;@oem22.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-11-09 99288]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20150801.005\ENG64.SYS [2015-06-26 138488]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.3.0.12\Definitions\VirusDefs\20150801.005\EX64.SYS [2015-06-26 2146040]
R3 netr28x;@oem5.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-11-26 2483376]
R3 RTL8168;@oem37.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-11-17 830680]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-11-17 34544]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2014-06-17 177752]
R3 SynTP;@oem40.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-11-17 524016]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S0 SymELAM;Symantec ELAM Driver; C:\Windows\system32\drivers\NISx64\1507000.00B\SymELAM.sys [2013-10-30 23568]
S3 AndnetBus;@oem104.inf,%LGSI.Service.Desc%;LGE Mobile USB Composite Device; C:\Windows\System32\drivers\lgandnetbus64.sys [2014-10-10 20992]
S3 AndNetDiag;@oem99.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2014-10-10 30720]
S3 ANDNetModem;@oem101.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2014-10-10 37376]
S3 BtAudioBusSrv;@oem47.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\Windows\System32\Drivers\BtAudioBus.sys []
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\Windows\System32\Drivers\BtL2caScoIf.sys []
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2013-08-22 1200128]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2013-08-22 77312]
S3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys []
S3 dg_ssudbus;@oem94.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22
108800]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ggflt;@oem93.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\Windows\System32\drivers\ggflt.sys [2014-10-19 16088]
S3 ggsomc;@oem93.inf,%SvcDesc%;SOMC USB Flash Driver; C:\Windows\System32\drivers\ggsomc.sys [2014-10-19 30424]
S3 huawei_enumerator;huawei_enumerator; C:\Windows\System32\drivers\ew_jubusenum.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-09-10 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-10-12 114304]
S3 intaud_WaveExtensible;@oem12.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-10-29 39320]
S3 massfilter;Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys []
S3 netr28ux;@netr28ux.inf,%Generic.Service.DispName%;RT2870 – ovladač rozšiřitelné karty USB pro bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\netr28ux.sys [2013-
06-18 2408208]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSP2STOR;@oem4.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2013-11-17 290008]
S3 rtbth;@oem14.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys []
S3 RTSPER;Realtek PCIe CardReader Driver; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-11-17 418008]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2013-02-06 28400]
S3 ssudmdm;@oem95.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2013-10-20 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-07-16 246784]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2014-10-29 38792]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2015-07-01 2753720]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 hpsrv;@oem17.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2012-09-24 31040]
R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [2014-03-26 469304]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-22 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11
733696]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-08-09 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
[2013-08-09 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-08-
09 390616]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\NIS.exe [2015-03-07 276336]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-04-24 76888]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-02-20 239176]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-
24 169752]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-14 268976]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16
50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-01 279024]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 116648]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client
\SocketHeciServer.exe [2013-05-11 822232]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19
30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-09 148136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-02-01 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 OverwolfUpdaterService;Overwolf Updater Service; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2014-01-30 98560]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
-----------------EOF-----------------