Pomale nacitavanie priecinkov

[g11193979@trbvm.com]

Caute..moj log

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jozef at 2015-09-24 20:11:42
Microsoft Windows 10 Pro
System drive C: has 60 GB (6%) free of 953 GB
Total RAM: 7906 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:11:43, on 24.9.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Jozef\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Users\Jozef\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Jozef\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE
C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Jozef\AppData\Local\Microsoft\VisualStudio\12.0\Designer\ShadowCache\qm4m3jyc.ltd\jo4wbkrv.ad3\XDesProc.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Jozef\Downloads\kts16.0.0.614en_8207.exe
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\Users\Jozef\Downloads\kts16.0.0.614en_8207.exe
C:\Windows\syswow64\MsiExec.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jozef.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fi.search.yahoo.com/?type=99451 ... got-yhp-ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: Microsoft Web Test Recorder 12.0 Helper - {432dd630-7e03-4c97-9d62-b99f52df4fc2} - C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [vmware-tray.exe] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [f.lux] "C:\Users\Jozef\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_8789346CA61D035B3DA7E5B3D9760C0D] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Jozef\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jozef\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Lync] "C:\Program Files\Microsoft Office 15\root\office15\lync.exe" /fromrunkey
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify] "C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Jozef\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Odoslanie do programu OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
O4 - Startup: OneDrive for Business.lnk = C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Xamarin Bonjour Service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe
O23 - Service: @%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000 (c2wts) - Unknown owner - C:\Program Files (x86)\Windows Identity Foundation\v3.5\c2wtshost.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Cron Service (CronService) - Fork, Ltd. - C:\Windows\Prey\wpxsvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disconnect Desktop Updater - Disconnect - C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\Disconnect Desktop Updater.exe
O23 - Service: disconnect-openvpn - Unknown owner - C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\nssm.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @oem35.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MyPublicWiFi Service (MyPublicWiFiService) - Unknown owner - C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @oem17.inf,%WBFService_SvcDesc%;Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\SysWOW64\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\SysWOW64\vmnat.exe
O23 - Service: VMware Workstation Server (VMwareHostd) - Unknown owner - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15464 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-be97d444-a9d2-4970-988b-d95a828e0038 -SystemEventPortName:HostProcess-3c970b2f-fe01-41d4-a704-76759110267d -IoCancelEventPortName:HostProcess-4e087d69-06e7-4d29-ba2d-7f691e768a96 -NonStateChangingEventPortName:HostProcess-766277b7-3f3a-493a-aca3-751c1333ae30 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:fb33952e-07eb-4fa0-a862-dc81afe800d8 -DeviceGroupId:
C:\WINDOWS\System32\spoolsv.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f2dc649e-9256-442a-9c36-ca4a8f346b36 -SystemEventPortName:HostProcess-210db463-6ba3-4b48-8228-fae16ea1a8fe -IoCancelEventPortName:HostProcess-01c1f55a-c0e5-4314-b2f2-71233806484f -NonStateChangingEventPortName:HostProcess-8823c62d-1798-43ef-9266-b7c6a15e751c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:db8d2e5d-8768-4662-810d-5eb9448f245f -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\WINDOWS\system32\CxAudMsg64.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\Microsoft Visual Studio 12.0\Common7\IDE\LabNetworkAgentService.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
C:\Windows\Prey\wpxsvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
"C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\WINDOWS\system32\valWBFPolicyService.exe
"C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe"
"C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe"
C:\WINDOWS\SysWOW64\vmnat.exe
dashost.exe {b552220b-44de-47b3-8b7de022afeb59a8}
C:\WINDOWS\SysWOW64\vmnetdhcp.exe
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Windows\Prey\\current\bin\node.exe" "lib\agent\cli.js"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe" -u "C:\ProgramData\VMware\hostd\config.xml"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\System32\alg.exe
C:\Windows\Prey\versions\1.4.1\node_modules\triggers\bin\lightevt.exe --monitor
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"

C:\WINDOWS\system32\wbem\WmiApSrv.exe

"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\nssm.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" cb8107ca-aee5-435f-8d08-6f96512e55bc
\??\C:\WINDOWS\system32\conhost.exe 0x4

winlogon.exe
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe"

"C:\Windows\RtsCM64.exe"
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Users\Jozef\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Users\Jozef\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Jozef\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE" /RunFolderSync /TrayOnly
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup
"C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe"
"C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyCrashService.exe"
"C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --channel="28520.0.800712784\1894497063" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4279 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 /prefetch:822062411
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.6131.10021.0_x64__8wekyb3d8bbwe\onenoteim.exe" -ServerName:microsoft.onenoteim.AppXxqb9ypsz6cs1w07e1pmjy4ww4dy9tpqr.mca
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.915.17170.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6208.42001.0_x64__8wekyb3d8bbwe\HxMail.exe" -ServerName:microsoft.windowslive.mail.AppX7fgs1v31b27fq9zen50wdw83aappcatm.mca
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6208.42001.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
"C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=28520 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="28520.2.652838019\471746924" /prefetch:673131151
"C:\Users\Jozef\AppData\Local\Microsoft\VisualStudio\12.0\Designer\ShadowCache\qm4m3jyc.ltd\jo4wbkrv.ad3\XDesProc.exe" -ServerName:Designer.App.AppXtr5vb7b44h4jtszg5mxx713wkkmzaz67.mca
taskhostw.exe
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\WINDOWS\system32\msiexec.exe /V


"C:\Users\Jozef\Downloads\kts16.0.0.614en_8207.exe"
"C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe"
"C:\Users\Jozef\Downloads\kts16.0.0.614en_8207.exe" /-elevated=
C:\Windows\syswow64\MsiExec.exe -Embedding F924BA3ED9E745F1D21F58C4259581D9
C:\WINDOWS\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
C:\Windows\syswow64\MsiExec.exe -Embedding ECD4627D47B0F88A07E2E76AF7A64C7A E Global\MSI0000
C:\Windows\System32\MsiExec.exe -Embedding 6F69283A62DE5B49DC8CE34241E07DD5 E Global\MSI0000
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\WINDOWS\system32\cmd.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey E057E6A7-FEA0-34BC-EBD0-6AAF03D1CF1D -Reinvoke
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
explorer.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe265_ Global\UsGthrCtrlFltPipeMssGthrPipe265 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 616 620 628 8192 624
C:\WINDOWS\system32\wbem\wmiprvse.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\\openvpn\bin\openvpn.exe" --config config.ovpn --auth-user-pass auth.txt
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Jozef\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2188940044-2382974296-1840201773-1001Core.job - C:\Users\Jozef\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2188940044-2382974296-1840201773-1001UA.job - C:\Users\Jozef\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Jozef\AppData\Roaming\Mozilla\Firefox\Profiles\819ncvl4.default

prefs.js - "browser.startup.homepage" - "about:home"
prefs.js - "keyword.URL" - "https://fi.search.yahoo.com/search?fr=g ... =994519&p="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll


C:\Users\Jozef\AppData\Roaming\Mozilla\Firefox\Profiles\819ncvl4.default\searchplugins\
yahoo_ff.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04 219304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-22 551848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-08-12 2340472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-22 212904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04 153768]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{432dd630-7e03-4c97-9d62-b99f52df4fc2}]
Microsoft Web Test Recorder 12.0 Helper - C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05 71520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-09-20 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-08-12 1733240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-09-20 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtsCM"=C:\Windows\RTSCM64.EXE [2013-06-20 147160]
"LenovoOptMouseUpdate"=C:\Program Files\Lenovo\HOTKEY\extapsup.exe [2013-06-20 255480]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-08-27 2634872]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-08-27 1710568]
"SynLenovoHelper"=C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [2015-08-22 164032]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-08-22 3954880]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"f.lux"=C:\Users\Jozef\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"Spotify Web Helper"=C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-09-16 2025016]
"GoogleChromeAutoLaunch_8789346CA61D035B3DA7E5B3D9760C0D"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-09-12 815944]
"Dropbox Update"=C:\Users\Jozef\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-25 134512]
"OneDrive"=C:\Users\Jozef\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-15 405584]
"Lync"=C:\Program Files\Microsoft Office 15\root\office15\lync.exe [2015-08-12 24059464]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-09-04 55358992]
"Spotify"=C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe [2015-09-16 7571000]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-09-16 134616]
"vmware-tray.exe"=C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [2015-05-31 114368]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-07-14 5579624]

C:\Users\Jozef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Jozef\AppData\Roaming\Dropbox\bin\Dropbox.exe
Odoslanie do programu OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
OneDrive for Business.lnk - C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-24 20:10:16 ----D---- C:\Program Files\trend micro
2015-09-24 20:10:15 ----D---- C:\rsit
2015-09-24 20:05:44 ----A---- C:\WINDOWS\system32\klfphc.dll
2015-09-24 20:03:52 ----D---- C:\Program Files (x86)\Kaspersky Lab
2015-09-24 20:03:51 ----D---- C:\ProgramData\Kaspersky Lab
2015-09-24 20:03:44 ----A---- C:\ProgramData\ntuser.dat
2015-09-24 20:03:24 ----A---- C:\WINDOWS\system32\drivers\klif.sys
2015-09-24 20:03:24 ----A---- C:\WINDOWS\system32\drivers\klhk.sys
2015-09-24 20:03:24 ----A---- C:\WINDOWS\system32\drivers\klflt.sys
2015-09-24 19:58:39 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2015-09-24 19:41:51 ----D---- C:\Users\Jozef\AppData\Roaming\Opera Software
2015-09-24 19:41:25 ----D---- C:\Program Files (x86)\Opera
2015-09-23 22:55:58 ----D---- C:\Program Files (x86)\Digia
2015-09-23 21:25:55 ----N---- C:\WINDOWS\system32\drivers\2B08E932.sys
2015-09-23 21:25:54 ----N---- C:\WINDOWS\system32\drivers\28160155.sys
2015-09-23 21:25:53 ----D---- C:\KVRT_Data
2015-09-23 15:42:58 ----D---- C:\Program Files\TAP-Windows
2015-09-23 15:41:57 ----D---- C:\Users\Jozef\AppData\Roaming\Disconnect
2015-09-23 12:43:58 ----HD---- C:\OneDriveTemp
2015-09-21 22:52:17 ----D---- C:\Users\Jozef\AppData\Roaming\MySQL
2015-09-21 22:51:49 ----D---- C:\Program Files\MySQL
2015-09-21 16:19:45 ----A---- C:\WINDOWS\system32\drivers\IntelHaxm.sys
2015-09-20 16:19:44 ----D---- C:\ProgramData\MonoTouch
2015-09-20 16:19:44 ----D---- C:\ProgramData\Mono for Android
2015-09-20 15:58:44 ----D---- C:\Program Files (x86)\Xamarin
2015-09-20 15:56:39 ----D---- C:\Program Files (x86)\GtkSharp
2015-09-20 15:39:53 ----A---- C:\WINDOWS\SYSWOW64\javaws.exe
2015-09-20 15:39:47 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2015-09-20 15:39:47 ----A---- C:\WINDOWS\SYSWOW64\javaw.exe
2015-09-20 15:39:46 ----A---- C:\WINDOWS\SYSWOW64\java.exe
2015-09-20 15:36:48 ----D---- C:\Program Files (x86)\Java
2015-09-19 21:17:44 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-09-19 21:16:58 ----D---- C:\ProgramData\LogMeIn
2015-09-19 21:07:46 ----D---- C:\ProgramData\Electronic Arts
2015-09-19 21:07:44 ----D---- C:\Program Files (x86)\Origin
2015-09-19 13:40:51 ----D---- C:\Program Files (x86)\RandyRants.com
2015-09-19 11:16:00 ----A---- C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-09-19 11:15:59 ----A---- C:\WINDOWS\SYSWOW64\Intel_OpenCL_ICD32.dll
2015-09-19 11:15:59 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-09-19 11:15:59 ----A---- C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2015-09-19 11:15:57 ----A---- C:\WINDOWS\SYSWOW64\iglhsip32.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\iglhsip64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\igfxCoIn_v4279.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\SYSWOW64\iglhcp32.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\iglhcp64.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxTray.exe
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxSDKLib.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxSDK.exe
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxLHM.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxHK.exe
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxext.exe
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxexps.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxEM.exe
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDI.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDH.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2015-09-19 11:15:53 ----A---- C:\WINDOWS\system32\igdumdim64.dll
2015-09-19 11:15:51 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2015-09-19 11:15:51 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2015-09-19 11:15:51 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2015-09-19 11:15:51 ----A---- C:\WINDOWS\system32\igdmd64.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\SYSWOW64\igdmcl32.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\system32\igdmcl64.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\system32\igdde64.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\SYSWOW64\igd12umd32.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\system32\igdail64.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\system32\igd12umd64.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\system32\igd11dxva64.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\SYSWOW64\igd11dxva32.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\SYSWOW64\igd10idpp32.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\system32\igd10idpp64.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\system32\igc64.dll
2015-09-19 11:15:47 ----A---- C:\WINDOWS\SYSWOW64\igc32.dll
2015-09-19 11:15:45 ----A---- C:\WINDOWS\SYSWOW64\ig75icd32.dll
2015-09-19 11:15:45 ----A---- C:\WINDOWS\system32\ig75icd64.dll
2015-09-19 11:15:45 ----A---- C:\WINDOWS\system32\Gfxv4_0.exe
2015-09-19 11:15:45 ----A---- C:\WINDOWS\system32\Gfxv2_0.exe
2015-09-19 11:15:45 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2015-09-19 11:15:44 ----A---- C:\WINDOWS\system32\GfxResources.dll
2015-09-19 11:15:44 ----A---- C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-09-19 11:15:44 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2015-09-19 11:15:44 ----A---- C:\WINDOWS\system32\difx64.exe
2015-09-19 11:15:43 ----A---- C:\WINDOWS\SYSWOW64\common_clang32.dll
2015-09-19 11:15:43 ----A---- C:\WINDOWS\system32\common_clang64.dll
2015-09-18 23:51:56 ----D---- C:\Program Files (x86)\Microsoft Emulator Manager
2015-09-18 23:51:54 ----D---- C:\Program Files (x86)\Microsoft Visual Studio Emulator for Android
2015-09-18 23:23:53 ----D---- C:\ProgramData\VsTelemetry
2015-09-18 22:54:54 ----A---- C:\WINDOWS\system32\igfxCUIService.exe
2015-09-18 21:36:30 ----D---- C:\Program Files (x86)\Counter-Strike 1.6
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-09-18 21:27:31 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-09-18 21:17:04 ----A---- C:\WINDOWS\system32\{8A694AF2-286D-429D-867A-3F95898EE308}.bat
2015-09-18 21:15:26 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-09-18 21:15:26 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\igfxCoIn_v4252.dll
2015-09-18 21:15:16 ----A---- C:\WINDOWS\system32\IccLibDll_x64.dll
2015-09-18 21:15:13 ----D---- C:\ProgramData\IntelDLM
2015-09-18 21:08:40 ----D---- C:\Program Files (x86)\Intel Driver Update Utility
2015-09-18 19:55:44 ----A---- C:\WINDOWS\SYSWOW64\drivers\SECDRV.SYS
2015-09-18 17:56:44 ----D---- C:\WINDOWS\system32\appmgmt
2015-09-18 14:54:09 ----D---- C:\Users\Jozef\AppData\Roaming\ESET
2015-09-15 10:53:14 ----D---- C:\Users\Jozef\AppData\Roaming\postgresql
2015-09-15 10:40:49 ----D---- C:\Program Files\PostgreSQL
2015-09-10 22:18:26 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-09-10 22:18:25 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-09-10 22:18:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-09-10 22:18:23 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-09-10 22:18:21 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-10 22:18:20 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-10 22:18:20 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-10 22:18:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-09-10 22:18:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-10 22:18:19 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-10 22:18:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 22:18:19 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-10 22:18:18 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-09-10 22:18:18 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-10 22:18:16 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-09-10 22:18:15 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-10 22:18:15 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-10 22:18:15 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 22:18:15 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-10 22:18:14 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-10 22:18:14 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-07 16:53:09 ----D---- C:\WINDOWS\PCHEALTH
2015-09-07 16:52:16 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2015-09-07 16:51:43 ----RHD---- C:\MSOCache
2015-09-07 16:40:54 ----D---- C:\Users\Jozef\AppData\Roaming\e-academy Inc
2015-09-05 20:57:36 ----D---- C:\ProgramData\Altova
2015-09-05 17:41:32 ----D---- C:\Program Files (x86)\XML Notepad 2007
2015-09-05 12:41:44 ----A---- C:\HaxLogs.txt
2015-09-05 12:41:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-09-05 12:39:53 ----A---- C:\WINDOWS\SYSWOW64\vsocklib.dll
2015-09-05 12:39:53 ----A---- C:\WINDOWS\system32\vsocklib.dll
2015-09-05 12:39:53 ----A---- C:\WINDOWS\system32\drivers\vsock.sys
2015-09-05 12:39:49 ----A---- C:\WINDOWS\system32\drivers\vmx86.sys
2015-09-05 12:39:25 ----A---- C:\WINDOWS\SYSWOW64\vmnetdhcp.exe
2015-09-05 12:39:24 ----A---- C:\WINDOWS\SYSWOW64\vmnat.exe
2015-09-05 12:39:23 ----A---- C:\WINDOWS\system32\drivers\vmnetuserif.sys
2015-09-05 12:39:13 ----A---- C:\WINDOWS\system32\vnetlib64.dll
2015-09-05 12:39:03 ----A---- C:\WINDOWS\system32\drivers\hcmon.sys
2015-09-05 12:38:08 ----D---- C:\Program Files\Common Files\VMware
2015-09-05 12:37:00 ----D---- C:\Program Files (x86)\VMware
2015-09-05 12:22:56 ----D---- C:\Program Files\Android
2015-09-05 12:19:57 ----D---- C:\Users\Jozef\AppData\Roaming\VMware
2015-09-05 12:14:05 ----D---- C:\ProgramData\VMware
2015-09-04 22:11:43 ----D---- C:\Users\Jozef\AppData\Roaming\nomacs
2015-09-04 22:10:35 ----D---- C:\Program Files (x86)\nomacs
2015-09-04 18:03:33 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2015-09-04 18:03:29 ----A---- C:\WINDOWS\system32\drivers\CxSfPt.dat
2015-09-04 18:03:18 ----A---- C:\WINDOWS\system32\CxAudMsg64.exe
2015-09-04 18:03:04 ----A---- C:\WINDOWS\system32\drivers\SamSfPa.dat
2015-09-04 18:02:53 ----D---- C:\Program Files\Dolby Digital Plus
2015-09-04 17:59:15 ----A---- C:\WINDOWS\system32\UCI64A96.DLL
2015-09-04 17:59:13 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-09-04 17:59:12 ----A---- C:\WINDOWS\system32\CxPageMaster64.dll
2015-09-04 17:59:12 ----A---- C:\WINDOWS\system32\CX64BP16.dll
2015-09-04 17:59:12 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2015-09-04 17:59:12 ----A---- C:\WINDOWS\system32\C3DHPExt64.dll
2015-09-01 18:07:04 ----D---- C:\Users\Jozef\AppData\Roaming\BitTorrent
2015-09-01 18:02:52 ----D---- C:\Users\Jozef\AppData\Roaming\Azureus
2015-08-29 23:15:30 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-29 23:15:29 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-29 23:15:27 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-29 23:15:27 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 23:15:26 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-29 23:15:26 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-29 23:15:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-29 23:15:25 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-29 23:15:25 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-29 23:15:25 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-29 23:15:25 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-08-29 23:15:21 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-27 09:30:56 ----D---- C:\Program Files (x86)\Tim Heuer

======List of files/folders modified in the last 1 month======

2015-09-24 20:10:23 ----D---- C:\WINDOWS\Prefetch
2015-09-24 20:10:16 ----RD---- C:\Program Files
2015-09-24 20:09:56 ----D---- C:\WINDOWS\INF
2015-09-24 20:09:52 ----SHD---- C:\WINDOWS\Installer
2015-09-24 20:09:52 ----D---- C:\WINDOWS\Temp
2015-09-24 20:05:44 ----D---- C:\WINDOWS\System32
2015-09-24 20:05:16 ----HD---- C:\WINDOWS\ELAMBKUP
2015-09-24 20:03:52 ----RD---- C:\Program Files (x86)
2015-09-24 20:03:51 ----AHD---- C:\ProgramData
2015-09-24 20:03:49 ----SHD---- C:\System Volume Information
2015-09-24 20:03:42 ----D---- C:\WINDOWS\system32\drivers
2015-09-24 20:03:29 ----SHD---- C:\Config.Msi
2015-09-24 20:00:26 ----D---- C:\ProgramData\ESET
2015-09-24 20:00:19 ----D---- C:\Program Files\ESET
2015-09-24 19:59:22 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-24 19:57:23 ----D---- C:\Users\Jozef\AppData\Roaming\Skype
2015-09-24 19:41:48 ----D---- C:\WINDOWS\system32\Tasks
2015-09-24 19:20:01 ----D---- C:\WINDOWS\system32\sru
2015-09-24 17:46:05 ----D---- C:\Users\Jozef\AppData\Roaming\Spotify
2015-09-24 11:24:02 ----D---- C:\WINDOWS\AppReadiness
2015-09-23 22:58:35 ----D---- C:\WINDOWS\system32\config
2015-09-23 22:56:31 ----D---- C:\WINDOWS\WinSxS
2015-09-23 22:55:59 ----RSD---- C:\WINDOWS\assembly
2015-09-23 21:32:29 ----D---- C:\Users\Jozef\AppData\Roaming\vlc
2015-09-23 21:14:14 ----D---- C:\Users\Jozef\AppData\Roaming\Dropbox
2015-09-23 21:13:45 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-23 15:48:54 ----D---- C:\Windows
2015-09-22 20:24:25 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-21 19:37:19 ----D---- C:\WINDOWS\rescache
2015-09-21 16:20:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-21 16:19:47 ----D---- C:\WINDOWS\system32\CatRoot
2015-09-21 16:19:41 ----D---- C:\Program Files\Intel
2015-09-21 16:14:00 ----D---- C:\ProgramData\Validity
2015-09-21 16:09:53 ----D---- C:\WINDOWS\SysWOW64
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\wbem
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\sk-SK
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\migration
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\en-US
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-21 16:09:50 ----D---- C:\WINDOWS\schemas
2015-09-21 16:09:36 ----D---- C:\WINDOWS\CbsTemp
2015-09-20 17:15:09 ----AD---- C:\Program Files (x86)\MSBuild
2015-09-20 16:06:41 ----D---- C:\ProgramData\Package Cache
2015-09-19 21:07:59 ----D---- C:\ProgramData\Origin
2015-09-19 15:46:30 ----HD---- C:\Program Files\WindowsApps
2015-09-19 13:23:51 ----AD---- C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-09-19 11:17:49 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-09-19 11:15:59 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2015-09-19 11:15:59 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2015-09-19 11:15:54 ----A---- C:\WINDOWS\SYSWOW64\igdusc32.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\system32\igdusc64.dll
2015-09-19 11:15:53 ----A---- C:\WINDOWS\SYSWOW64\igdumdim32.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\system32\igd10iumd64.dll
2015-09-18 23:54:50 ----D---- C:\Program Files (x86)\Microsoft XDE
2015-09-18 22:55:50 ----D---- C:\WINDOWS\system32\catroot2
2015-09-18 21:36:28 ----D---- C:\ProgramData\NVIDIA
2015-09-18 21:29:07 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-18 21:15:39 ----D---- C:\Intel
2015-09-18 19:55:44 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-09-18 17:56:38 ----AD---- C:\Program Files (x86)\QuickTime
2015-09-18 17:50:53 ----D---- C:\Program Files\glassfish-4.1
2015-09-18 15:25:49 ----SD---- C:\Users\Jozef\AppData\Roaming\Microsoft
2015-09-17 19:00:41 ----D---- C:\WINDOWS\Tasks
2015-09-17 18:50:11 ----D---- C:\Program Files (x86)\Common Files
2015-09-17 18:43:52 ----D---- C:\Program Files\Common Files
2015-09-17 11:50:17 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-09-15 12:18:22 ----D---- C:\ProgramData\Skype
2015-09-15 12:18:09 ----RD---- C:\Program Files (x86)\Skype
2015-09-15 10:46:31 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2015-09-15 10:45:25 ----D---- C:\Program Files\Microsoft Office 15
2015-09-13 12:39:07 ----D---- C:\Program Files (x86)\PSPad editor
2015-09-11 19:39:10 ----D---- C:\WINDOWS\system32\MRT
2015-09-11 05:45:54 ----D---- C:\WINDOWS\system32\appraiser
2015-09-11 05:45:54 ----D---- C:\WINDOWS\AppPatch
2015-09-11 05:45:54 ----D---- C:\Program Files\Windows Journal
2015-09-09 22:32:24 ----D---- C:\WINDOWS\system32\NDF
2015-09-07 16:53:55 ----D---- C:\ProgramData\Microsoft Help
2015-09-07 16:53:10 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-09-07 16:53:09 ----ASD---- C:\ProgramData\Microsoft
2015-09-07 16:52:08 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-09-05 18:31:33 ----AD---- C:\Program Files (x86)\VirtuaWin
2015-09-05 13:05:47 ----D---- C:\Games
2015-09-05 12:38:13 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-09-05 10:44:04 ----AD---- C:\Program Files\Classic Shell
2015-09-05 10:31:12 ----AD---- C:\Program Files (x86)\TeamViewer
2015-09-04 17:59:14 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-09-04 17:59:13 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-09-04 17:59:13 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-09-04 17:59:13 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-09-01 17:59:56 ----D---- C:\Users\Jozef\AppData\Roaming\transmission
2015-08-31 04:15:33 ----D---- C:\WINDOWS\system32\oobe
2015-08-31 04:15:33 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-29 00:01:54 ----D---- C:\WINDOWS\system32\WDI
2015-08-28 23:53:48 ----RSD---- C:\WINDOWS\Fonts
2015-08-27 03:37:01 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2015-08-27 03:37:01 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-08-27 03:36:47 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2015-08-27 03:36:47 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2015-08-26 18:37:02 ----A---- C:\WINDOWS\system32\MRT.exe
2015-08-25 21:38:05 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2015-08-25 21:38:05 ----A---- C:\WINDOWS\system32\nvinitx.dll
2015-08-25 21:38:05 ----A---- C:\WINDOWS\system32\nvapi64.dll
2015-08-25 18:57:35 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-08-25 18:57:34 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2015-08-25 18:57:34 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-08-25 18:57:34 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-08-25 18:57:34 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-08-25 18:57:34 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-08-25 18:57:34 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-08-25 18:57:34 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2015-08-25 18:57:34 ----A---- C:\WINDOWS\system32\nv3dappshext.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-08-02 644968]
R0 IntelHSWPcc;IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [2013-08-19 77456]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-08-31 40264]
R1 EpfwLWF;@oem92.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-07-14 53360]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 klhk;Kaspersky Lab service driver; C:\WINDOWS\system32\DRIVERS\klhk.sys [2015-07-04 227000]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2015-06-30 937656]
R1 SMIDriver;SMIDriver; C:\WINDOWS\system32\drivers\smi.sys [2015-03-03 19656]
R2 hcmon;VMware hcmon; \??\C:\WINDOWS\system32\drivers\hcmon.sys [2015-05-22 55488]
R2 IntelHaxm;Intel HAXM Service; C:\WINDOWS\system32\DRIVERS\IntelHaxm.sys [2015-07-15 84992]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 CnxtHdAudService;@oem66.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-09-04 1561728]
R3 Hamachi;@oem103.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-07-14 45680]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2015-07-17 72400]
R3 ibtusb;@oem79.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2015-03-20 253680]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-09-19 6416792]
R3 iwdbus;@oem51.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-06-26 39480]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2015-06-30 171192]
R3 MEIx64;@oem72.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2015-07-10 3496216]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-08-31 11188880]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-08-27 19576]
R3 nvvad_WaveExtensible;@oem78.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-08-11 50472]
R3 rt640x64;@oem82.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-18 895256]
R3 RTSPER;@oem80.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-06-15 761600]
R3 rtsuvc;@oem28.inf,%rtsuvc.DeviceDesc%;Integrated Camera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-06-20 8244312]
R3 SensorsSimulatorDriver;@oem7.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2015-07-10 214016]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-08-22 52912]
R3 SynTP;@oem19.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-08-22 629440]
R4 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-07-14 255240]
R4 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys []
R4 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-07-14 178520]
R4 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-07-14 231520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S1 ndiskhaz;Azzouzi HotSpot LightWeight Filter; C:\WINDOWS\system32\DRIVERS\ndiskhaz.sys [2012-12-07 30536]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-08-20 929280]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 intaud_WaveExtensible;@oem14.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-06-26 50232]
S3 IntcDAud;@oem101.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-08 473864]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-07-30 934752]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
S3 tap0901;@oem104.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2014-11-05 27136]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Bonjour Service;Xamarin Bonjour Service; C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe [2015-09-17 384512]
R2 ClickToRunSvc;Služba Klikni a spusti balíka Microsoft Office; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2015-08-11 2768472]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 CronService;Cron Service; C:\Windows\Prey\wpxsvc.exe [2015-01-21 611854]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2015-04-10 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-08-27 1155192]
R2 IBMPMSVC;@oem35.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2015-07-17 156920]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-09-19 361376]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2015-07-09 21232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LabNetworkAgentService;Visual Studio Lab Network Agent Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\IDE\LabNetworkAgentService.exe [2015-06-28 562904]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2014-04-07 110128]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2014-07-08 115184]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-07-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 MyPublicWiFiService;MyPublicWiFi Service; C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe [2013-04-03 756224]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-08-27 1872504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-08-27 5544568]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-08-25 937592]
R2 OneSyncSvc_Session4;Sync Host_Session4; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-10-20 130024]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-08-22 255168]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-08-07 5611280]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 disconnect-openvpn;disconnect-openvpn; C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\nssm.exe [2014-08-31 338944]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session4;Kontaktné údaje_Session4; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-07-14 2540904]
S2 LabAgentService;Visual Studio Lab Agent Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\IDE\LabAgentService.exe [2015-06-28 147136]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2015-07-30 5632]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-09-19 293272]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 Disconnect Desktop Updater;Disconnect Desktop Updater; C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\Disconnect Desktop Updater.exe [2015-07-23 358400]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-09 148136]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-08-13 150600]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-07-30 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2015-07-01 22008]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[g11193979@trbvm.com]

hello ! paci sa.

# AdwCleaner v5.008 - Logfile created 25/09/2015 at 00:00:07
# Updated 18/09/2015 by Xplode
# Database : 2015-09-23.1 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : Jozef - THINKPAD_E540
# Running from : C:\Users\Jozef\Downloads\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Users\Jozef\AppData\Local\MalwareProtectionLive

***** [ Files ] *****

[-] File Deleted : C:\Users\Jozef\AppData\Roaming\Mozilla\Firefox\Profiles\819ncvl4.default\searchplugins\yahoo_ff.xml

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[x] Key Not Deleted : HKCU\Software\AppDataLow\Software\Settings Manager
[x] Key Not Deleted : HKU\S-1-5-21-2188940044-2382974296-1840201773-1001\Software\AppDataLow\Software\Settings Manager
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-2188940044-2382974296-1840201773-1001\Software\Microsoft\Internet Explorer\Main [Start Page]

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1201 bytes] ##########

[Rudy]

Dejte nový log RSIT.

[g11193979@trbvm.com]

nech sa paci medzicasom sa pomale prehliadanie priecinkov opravilo

prikladam link, pretoze log je prilis velky pre forum http://paste2.org/Z7Uk5Ee8

[Rudy]

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]/64

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

[g11193979@trbvm.com]

hello ! dakujem Vam

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jozef at 2015-09-26 12:01:35
Microsoft Windows 10 Pro
System drive C: has 62 GB (6%) free of 953 GB
Total RAM: 7906 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:01:38, on 26.9.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avpui.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Jozef\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Jozef\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Jozef\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\Program Files\trend micro\Jozef.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: Microsoft Web Test Recorder 12.0 Helper - {432dd630-7e03-4c97-9d62-b99f52df4fc2} - C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [vmware-tray.exe] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [f.lux] "C:\Users\Jozef\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_8789346CA61D035B3DA7E5B3D9760C0D] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Jozef\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jozef\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Lync] "C:\Program Files\Microsoft Office 15\root\office15\lync.exe" /fromrunkey
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify] "C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Jozef\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Odoslanie do programu OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
O4 - Startup: OneDrive for Business.lnk = C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{d56964c0-5a05-4400-937f-764b07f36bd1}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe
O23 - Service: Xamarin Bonjour Service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe
O23 - Service: @%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000 (c2wts) - Unknown owner - C:\Program Files (x86)\Windows Identity Foundation\v3.5\c2wtshost.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Cron Service (CronService) - Fork, Ltd. - C:\Windows\Prey\wpxsvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disconnect Desktop Updater - Disconnect - C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\Disconnect Desktop Updater.exe
O23 - Service: disconnect-openvpn - Unknown owner - C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\nssm.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @oem35.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MyPublicWiFi Service (MyPublicWiFiService) - Unknown owner - C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @oem17.inf,%WBFService_SvcDesc%;Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\SysWOW64\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\SysWOW64\vmnat.exe
O23 - Service: VMware Workstation Server (VMwareHostd) - Unknown owner - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: vssbrigde64 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\x64\vssbridge64.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16111 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\ibmpmsvc.exe
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-05a05eb8-533b-43d0-9667-c944779c03b5 -SystemEventPortName:HostProcess-f94cdb97-f204-46a7-8ca1-427162bb6456 -IoCancelEventPortName:HostProcess-6da4d317-5abb-4689-acfb-3e27649f4a8c -NonStateChangingEventPortName:HostProcess-8c40b251-5b0c-479d-83c8-00b0a84e25c6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:72d619dd-8c4e-4772-80a0-ba165d4a6bc1 -DeviceGroupId:
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\spoolsv.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-38471737-f27b-4ac7-9d4b-3865ef567fd2 -SystemEventPortName:HostProcess-25596178-998e-42ba-87ea-7e58c3119ed7 -IoCancelEventPortName:HostProcess-8e8db903-11d2-43ff-9036-5b22f20f09b0 -NonStateChangingEventPortName:HostProcess-20ce327e-d4c3-4e2a-82ac-920c871d1a87 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ab04e50f-b40f-4349-9243-c546024fe3aa -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe" -r
"C:\WINDOWS\system32\CxAudMsg64.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\Windows\Prey\wpxsvc.exe
dashost.exe {2296405e-fb26-45d1-9c9e93671475be61}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\WINDOWS\system32\valWBFPolicyService.exe
"C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\SysWOW64\vmnetdhcp.exe
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
"C:\Program Files\Microsoft Visual Studio 12.0\Common7\IDE\LabNetworkAgentService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
C:\WINDOWS\SysWOW64\vmnat.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
"C:\Windows\Prey\\current\bin\node.exe" "lib\agent\cli.js"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" cb8107ca-aee5-435f-8d08-6f96512e55bc
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe" -u "C:\ProgramData\VMware\hostd\config.xml"
C:\Windows\Prey\versions\1.4.1\node_modules\triggers\bin\lightevt.exe --monitor
C:\WINDOWS\System32\alg.exe
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avpui.exe" -hidden
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskeng.exe {331B391A-4D0B-422B-9424-D125AD3BAA0E}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe" -ServerName:RemindersServer
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\RtsCM64.exe"
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Users\Jozef\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Users\Jozef\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
"C:\Users\Jozef\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="8984.0.212549805\1910181307" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4279 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE" /RunFolderSync /TrayOnly
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Disabled/OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="8984.1.1823048219\146583082" --font-cache-shared-handle=2120 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Disabled/OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="8984.2.1401060594\1165868536" --font-cache-shared-handle=2232 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Disabled/OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="8984.3.1777562434\421244990" --font-cache-shared-handle=2348 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Disabled/OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="8984.4.597242747\1098916599" --font-cache-shared-handle=2436 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Disabled/OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="8984.5.592052855\1954161871" --font-cache-shared-handle=2520 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Disabled/OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="8984.6.1309717232\2055142306" --font-cache-shared-handle=2620 /prefetch:673131151
"C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --channel="9128.0.360771854\617060060" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4279 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 /prefetch:822062411
"C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 --disable-spell-checking --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=9128 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="9128.1.690984897\1304129599" /prefetch:673131151
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe" -ServerName:ActionUriServer
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe" -ServerName:ActionUriServer
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\wuapihost.exe -Embedding
C:\WINDOWS\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding

"C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe"
"C:\Users\Jozef\Downloads\RSITx64 (1).exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2188940044-2382974296-1840201773-1001Core.job - C:\Users\Jozef\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2188940044-2382974296-1840201773-1001UA.job - C:\Users\Jozef\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Jozef\AppData\Roaming\Mozilla\Firefox\Profiles\819ncvl4.default

prefs.js - "browser.startup.homepage" - "about:home"
prefs.js - "keyword.URL" - "https://fi.search.yahoo.com/search?fr=g ... =994519&p="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04 219304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-22 551848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C66D064F-82FE-4E1A-B06A-B2490BA48B18}]
Kaspersky Protection plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08 789760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-11 2340472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-22 212904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04 153768]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{432dd630-7e03-4c97-9d62-b99f52df4fc2}]
Microsoft Web Test Recorder 12.0 Helper - C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05 71520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-09-20 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C66D064F-82FE-4E1A-B06A-B2490BA48B18}]
Kaspersky Protection plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll [2015-07-08 574208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12 1733240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-09-20 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Kaspersky Protection toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08 789760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Kaspersky Protection toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll [2015-07-08 574208]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtsCM"=C:\Windows\RTSCM64.EXE [2013-06-20 147160]
"LenovoOptMouseUpdate"=C:\Program Files\Lenovo\HOTKEY\extapsup.exe [2013-06-20 255480]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-08-27 2634872]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-08-27 1710568]
"SynLenovoHelper"=C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [2015-08-22 164032]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-08-22 3954880]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-25 935104]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"f.lux"=C:\Users\Jozef\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"Spotify Web Helper"=C:\Users\Jozef\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-09-16 2025016]
"GoogleChromeAutoLaunch_8789346CA61D035B3DA7E5B3D9760C0D"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-09-24 815944]
"Dropbox Update"=C:\Users\Jozef\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-25 134512]
"OneDrive"=C:\Users\Jozef\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-15 405584]
"Lync"=C:\Program Files\Microsoft Office 15\root\office15\lync.exe [2015-09-12 24059464]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-09-04 55358992]
"Spotify"=C:\Users\Jozef\AppData\Roaming\Spotify\Spotify.exe [2015-09-16 7571000]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-09-16 134616]
"vmware-tray.exe"=C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [2015-05-31 114368]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-07-14 5579624]

C:\Users\Jozef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Jozef\AppData\Roaming\Dropbox\bin\Dropbox.exe
Odoslanie do programu OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
OneDrive for Business.lnk - C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-26 11:40:59 ----D---- C:\_OTM
2015-09-25 20:00:06 ----HD---- C:\OneDriveTemp
2015-09-25 18:27:56 ----D---- C:\ProgramData\NuGet
2015-09-25 18:27:56 ----D---- C:\Program Files (x86)\NuGet
2015-09-25 17:48:04 ----D---- C:\Program Files\CCleaner
2015-09-25 00:14:15 ----A---- C:\WINDOWS\system32\klfphc.dll
2015-09-25 00:13:32 ----D---- C:\ProgramData\Kaspersky Lab
2015-09-25 00:13:32 ----D---- C:\Program Files (x86)\Kaspersky Lab
2015-09-25 00:12:52 ----A---- C:\WINDOWS\system32\drivers\klif.sys
2015-09-25 00:12:52 ----A---- C:\WINDOWS\system32\drivers\klhk.sys
2015-09-25 00:12:52 ----A---- C:\WINDOWS\system32\drivers\klflt.sys
2015-09-24 23:56:02 ----D---- C:\AdwCleaner
2015-09-24 20:10:16 ----D---- C:\Program Files\trend micro
2015-09-24 20:10:15 ----D---- C:\rsit
2015-09-24 20:03:44 ----A---- C:\ProgramData\ntuser.dat
2015-09-24 19:58:39 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2015-09-24 19:41:51 ----D---- C:\Users\Jozef\AppData\Roaming\Opera Software
2015-09-24 19:41:25 ----D---- C:\Program Files (x86)\Opera
2015-09-23 22:55:58 ----D---- C:\Program Files (x86)\Digia
2015-09-23 21:25:53 ----D---- C:\KVRT_Data
2015-09-23 15:42:58 ----D---- C:\Program Files\TAP-Windows
2015-09-23 15:41:57 ----D---- C:\Users\Jozef\AppData\Roaming\Disconnect
2015-09-21 22:52:17 ----D---- C:\Users\Jozef\AppData\Roaming\MySQL
2015-09-21 22:51:49 ----D---- C:\Program Files\MySQL
2015-09-21 16:19:45 ----A---- C:\WINDOWS\system32\drivers\IntelHaxm.sys
2015-09-20 16:19:44 ----D---- C:\ProgramData\MonoTouch
2015-09-20 16:19:44 ----D---- C:\ProgramData\Mono for Android
2015-09-20 15:58:44 ----D---- C:\Program Files (x86)\Xamarin
2015-09-20 15:56:39 ----D---- C:\Program Files (x86)\GtkSharp
2015-09-20 15:39:53 ----A---- C:\WINDOWS\SYSWOW64\javaws.exe
2015-09-20 15:39:47 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2015-09-20 15:39:47 ----A---- C:\WINDOWS\SYSWOW64\javaw.exe
2015-09-20 15:39:46 ----A---- C:\WINDOWS\SYSWOW64\java.exe
2015-09-20 15:36:48 ----D---- C:\Program Files (x86)\Java
2015-09-19 21:17:44 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-09-19 21:16:58 ----D---- C:\ProgramData\LogMeIn
2015-09-19 21:07:46 ----D---- C:\ProgramData\Electronic Arts
2015-09-19 21:07:44 ----D---- C:\Program Files (x86)\Origin
2015-09-19 13:40:51 ----D---- C:\Program Files (x86)\RandyRants.com
2015-09-19 11:16:00 ----A---- C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-09-19 11:15:59 ----A---- C:\WINDOWS\SYSWOW64\Intel_OpenCL_ICD32.dll
2015-09-19 11:15:59 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-09-19 11:15:59 ----A---- C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2015-09-19 11:15:57 ----A---- C:\WINDOWS\SYSWOW64\iglhsip32.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\iglhsip64.dll
2015-09-19 11:15:57 ----A---- C:\WINDOWS\system32\igfxCoIn_v4279.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\SYSWOW64\iglhcp32.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\iglhcp64.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxTray.exe
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxSDKLib.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxSDK.exe
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2015-09-19 11:15:56 ----A---- C:\WINDOWS\system32\igfxLHM.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxHK.exe
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxext.exe
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxexps.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxEM.exe
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDI.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxDH.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-09-19 11:15:55 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2015-09-19 11:15:53 ----A---- C:\WINDOWS\system32\igdumdim64.dll
2015-09-19 11:15:51 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2015-09-19 11:15:51 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2015-09-19 11:15:51 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2015-09-19 11:15:51 ----A---- C:\WINDOWS\system32\igdmd64.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\SYSWOW64\igdmcl32.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\system32\igdmcl64.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2015-09-19 11:15:50 ----A---- C:\WINDOWS\system32\igdde64.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\SYSWOW64\igd12umd32.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\system32\igdail64.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\system32\igd12umd64.dll
2015-09-19 11:15:49 ----A---- C:\WINDOWS\system32\igd11dxva64.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\SYSWOW64\igd11dxva32.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\SYSWOW64\igd10idpp32.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\system32\igd10idpp64.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\system32\igc64.dll
2015-09-19 11:15:47 ----A---- C:\WINDOWS\SYSWOW64\igc32.dll
2015-09-19 11:15:45 ----A---- C:\WINDOWS\SYSWOW64\ig75icd32.dll
2015-09-19 11:15:45 ----A---- C:\WINDOWS\system32\ig75icd64.dll
2015-09-19 11:15:45 ----A---- C:\WINDOWS\system32\Gfxv4_0.exe
2015-09-19 11:15:45 ----A---- C:\WINDOWS\system32\Gfxv2_0.exe
2015-09-19 11:15:45 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2015-09-19 11:15:44 ----A---- C:\WINDOWS\system32\GfxResources.dll
2015-09-19 11:15:44 ----A---- C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-09-19 11:15:44 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2015-09-19 11:15:44 ----A---- C:\WINDOWS\system32\difx64.exe
2015-09-19 11:15:43 ----A---- C:\WINDOWS\SYSWOW64\common_clang32.dll
2015-09-19 11:15:43 ----A---- C:\WINDOWS\system32\common_clang64.dll
2015-09-18 23:51:56 ----D---- C:\Program Files (x86)\Microsoft Emulator Manager
2015-09-18 23:51:54 ----D---- C:\Program Files (x86)\Microsoft Visual Studio Emulator for Android
2015-09-18 23:23:53 ----D---- C:\ProgramData\VsTelemetry
2015-09-18 22:54:54 ----A---- C:\WINDOWS\system32\igfxCUIService.exe
2015-09-18 21:36:30 ----D---- C:\Program Files (x86)\Counter-Strike 1.6
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-09-18 21:34:26 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-09-18 21:34:25 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-09-18 21:27:31 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-09-18 21:17:04 ----A---- C:\WINDOWS\system32\{8A694AF2-286D-429D-867A-3F95898EE308}.bat
2015-09-18 21:15:26 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-09-18 21:15:26 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-09-18 21:15:22 ----A---- C:\WINDOWS\system32\igfxCoIn_v4252.dll
2015-09-18 21:15:16 ----A---- C:\WINDOWS\system32\IccLibDll_x64.dll
2015-09-18 21:15:13 ----D---- C:\ProgramData\IntelDLM
2015-09-18 21:08:40 ----D---- C:\Program Files (x86)\Intel Driver Update Utility
2015-09-18 19:55:44 ----A---- C:\WINDOWS\SYSWOW64\drivers\SECDRV.SYS
2015-09-18 17:56:44 ----D---- C:\WINDOWS\system32\appmgmt
2015-09-18 14:54:09 ----D---- C:\Users\Jozef\AppData\Roaming\ESET
2015-09-15 10:53:14 ----D---- C:\Users\Jozef\AppData\Roaming\postgresql
2015-09-15 10:40:49 ----D---- C:\Program Files\PostgreSQL
2015-09-10 22:18:26 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-09-10 22:18:25 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-09-10 22:18:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-09-10 22:18:23 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-09-10 22:18:21 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-10 22:18:20 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-10 22:18:20 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-10 22:18:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-09-10 22:18:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-10 22:18:19 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-10 22:18:19 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 22:18:19 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-10 22:18:18 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-09-10 22:18:18 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-10 22:18:17 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-10 22:18:16 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-10 22:18:16 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-09-10 22:18:15 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-10 22:18:15 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-10 22:18:15 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 22:18:15 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-10 22:18:14 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-10 22:18:14 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-07 16:53:09 ----D---- C:\WINDOWS\PCHEALTH
2015-09-07 16:52:16 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2015-09-07 16:51:43 ----RHD---- C:\MSOCache
2015-09-07 16:40:54 ----D---- C:\Users\Jozef\AppData\Roaming\e-academy Inc
2015-09-05 20:57:36 ----D---- C:\ProgramData\Altova
2015-09-05 17:41:32 ----D---- C:\Program Files (x86)\XML Notepad 2007
2015-09-05 12:41:44 ----A---- C:\HaxLogs.txt
2015-09-05 12:41:13 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-09-05 12:39:53 ----A---- C:\WINDOWS\SYSWOW64\vsocklib.dll
2015-09-05 12:39:53 ----A---- C:\WINDOWS\system32\vsocklib.dll
2015-09-05 12:39:53 ----A---- C:\WINDOWS\system32\drivers\vsock.sys
2015-09-05 12:39:49 ----A---- C:\WINDOWS\system32\drivers\vmx86.sys
2015-09-05 12:39:25 ----A---- C:\WINDOWS\SYSWOW64\vmnetdhcp.exe
2015-09-05 12:39:24 ----A---- C:\WINDOWS\SYSWOW64\vmnat.exe
2015-09-05 12:39:23 ----A---- C:\WINDOWS\system32\drivers\vmnetuserif.sys
2015-09-05 12:39:13 ----A---- C:\WINDOWS\system32\vnetlib64.dll
2015-09-05 12:39:03 ----A---- C:\WINDOWS\system32\drivers\hcmon.sys
2015-09-05 12:38:08 ----D---- C:\Program Files\Common Files\VMware
2015-09-05 12:37:00 ----D---- C:\Program Files (x86)\VMware
2015-09-05 12:22:56 ----D---- C:\Program Files\Android
2015-09-05 12:19:57 ----D---- C:\Users\Jozef\AppData\Roaming\VMware
2015-09-05 12:14:05 ----D---- C:\ProgramData\VMware
2015-09-04 22:11:43 ----D---- C:\Users\Jozef\AppData\Roaming\nomacs
2015-09-04 22:10:35 ----D---- C:\Program Files (x86)\nomacs
2015-09-04 18:03:33 ----A---- C:\WINDOWS\SYSWOW64\SASrv.exe
2015-09-04 18:03:29 ----A---- C:\WINDOWS\system32\drivers\CxSfPt.dat
2015-09-04 18:03:18 ----A---- C:\WINDOWS\system32\CxAudMsg64.exe
2015-09-04 18:03:04 ----A---- C:\WINDOWS\system32\drivers\SamSfPa.dat
2015-09-04 18:02:53 ----D---- C:\Program Files\Dolby Digital Plus
2015-09-04 17:59:15 ----A---- C:\WINDOWS\system32\UCI64A96.DLL
2015-09-04 17:59:13 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2015-09-04 17:59:12 ----A---- C:\WINDOWS\system32\CxPageMaster64.dll
2015-09-04 17:59:12 ----A---- C:\WINDOWS\system32\CX64BP16.dll
2015-09-04 17:59:12 ----A---- C:\WINDOWS\system32\CSpkExt64.dll
2015-09-04 17:59:12 ----A---- C:\WINDOWS\system32\C3DHPExt64.dll
2015-09-01 18:07:04 ----D---- C:\Users\Jozef\AppData\Roaming\BitTorrent
2015-09-01 18:02:52 ----D---- C:\Users\Jozef\AppData\Roaming\Azureus
2015-08-29 23:15:30 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-29 23:15:29 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-29 23:15:27 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-29 23:15:27 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 23:15:26 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-29 23:15:26 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-29 23:15:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-29 23:15:25 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-29 23:15:25 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-29 23:15:25 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-29 23:15:25 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-29 23:15:24 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2015-08-29 23:15:23 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-29 23:15:22 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-08-29 23:15:21 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-29 23:15:21 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-27 09:30:56 ----D---- C:\Program Files (x86)\Tim Heuer

======List of files/folders modified in the last 1 month======

2015-09-26 12:01:35 ----D---- C:\WINDOWS\Temp
2015-09-26 12:01:17 ----D---- C:\WINDOWS\Prefetch
2015-09-26 12:01:09 ----D---- C:\WINDOWS\System32
2015-09-26 11:50:19 ----D---- C:\WINDOWS\INF
2015-09-26 11:50:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-26 11:49:25 ----D---- C:\Users\Jozef\AppData\Roaming\Dropbox
2015-09-26 11:49:22 ----D---- C:\Users\Jozef\AppData\Roaming\Skype
2015-09-26 11:48:48 ----D---- C:\Users\Jozef\AppData\Roaming\Spotify
2015-09-26 11:44:24 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-26 11:42:52 ----SHD---- C:\System Volume Information
2015-09-26 11:42:37 ----D---- C:\ProgramData\Validity
2015-09-26 11:42:16 ----D---- C:\WINDOWS\system32\drivers
2015-09-26 11:41:46 ----D---- C:\WINDOWS\system32\sru
2015-09-26 11:41:00 ----D---- C:\WINDOWS\Tasks
2015-09-26 11:00:08 ----SHD---- C:\WINDOWS\Installer
2015-09-26 11:00:08 ----SHD---- C:\Config.Msi
2015-09-26 11:00:01 ----D---- C:\WINDOWS\system32\CatRoot
2015-09-26 01:55:38 ----D---- C:\WINDOWS\AppReadiness
2015-09-25 20:06:28 ----D---- C:\WINDOWS\system32\config
2015-09-25 19:06:05 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-25 18:57:17 ----D---- C:\ProgramData\Package Cache
2015-09-25 18:42:11 ----D---- C:\WINDOWS\CbsTemp
2015-09-25 18:42:05 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2015-09-25 18:41:59 ----AD---- C:\Program Files\SharePoint Client Components
2015-09-25 18:41:37 ----AD---- C:\Program Files\Microsoft SQL Server
2015-09-25 18:41:35 ----D---- C:\WINDOWS\SysWOW64
2015-09-25 18:41:35 ----AD---- C:\Program Files (x86)\Microsoft SQL Server
2015-09-25 18:41:18 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-09-25 18:35:55 ----AD---- C:\Program Files\MSBuild
2015-09-25 18:31:05 ----AD---- C:\Program Files (x86)\Microsoft Web Tools
2015-09-25 18:28:42 ----AD---- C:\Program Files (x86)\IIS Express
2015-09-25 18:28:40 ----AD---- C:\Program Files\IIS Express
2015-09-25 18:27:56 ----RD---- C:\Program Files (x86)
2015-09-25 18:27:56 ----AHD---- C:\ProgramData
2015-09-25 18:27:52 ----RSD---- C:\WINDOWS\assembly
2015-09-25 18:17:08 ----RSD---- C:\WINDOWS\Fonts
2015-09-25 18:11:30 ----D---- C:\WINDOWS\SYSWOW64\1033
2015-09-25 18:05:33 ----AD---- C:\Program Files (x86)\HTML Help Workshop
2015-09-25 18:03:11 ----D---- C:\WINDOWS\system32\1033
2015-09-25 18:02:58 ----AD---- C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-09-25 17:48:06 ----D---- C:\WINDOWS\system32\Tasks
2015-09-25 17:48:04 ----RD---- C:\Program Files
2015-09-25 16:21:30 ----D---- C:\Users\Jozef\AppData\Roaming\GitHub
2015-09-25 03:38:54 ----D---- C:\WINDOWS\WinSxS
2015-09-25 01:57:44 ----HD---- C:\Program Files\WindowsApps
2015-09-25 00:30:52 ----D---- C:\Program Files\Microsoft Office 15
2015-09-25 00:16:06 ----D---- C:\ProgramData\Lenovo
2015-09-25 00:14:40 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-25 00:13:56 ----HD---- C:\WINDOWS\ELAMBKUP
2015-09-24 20:00:26 ----D---- C:\ProgramData\ESET
2015-09-24 20:00:19 ----D---- C:\Program Files\ESET
2015-09-23 21:32:29 ----D---- C:\Users\Jozef\AppData\Roaming\vlc
2015-09-23 15:48:54 ----D---- C:\Windows
2015-09-21 19:37:19 ----D---- C:\WINDOWS\rescache
2015-09-21 16:19:41 ----D---- C:\Program Files\Intel
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\wbem
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\sk-SK
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\migration
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\en-US
2015-09-21 16:09:52 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-21 16:09:50 ----D---- C:\WINDOWS\schemas
2015-09-20 17:15:09 ----AD---- C:\Program Files (x86)\MSBuild
2015-09-19 21:07:59 ----D---- C:\ProgramData\Origin
2015-09-19 11:17:49 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-09-19 11:15:59 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2015-09-19 11:15:59 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2015-09-19 11:15:54 ----A---- C:\WINDOWS\SYSWOW64\igdusc32.dll
2015-09-19 11:15:54 ----A---- C:\WINDOWS\system32\igdusc64.dll
2015-09-19 11:15:53 ----A---- C:\WINDOWS\SYSWOW64\igdumdim32.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2015-09-19 11:15:48 ----A---- C:\WINDOWS\system32\igd10iumd64.dll
2015-09-18 23:54:50 ----D---- C:\Program Files (x86)\Microsoft XDE
2015-09-18 22:55:50 ----D---- C:\WINDOWS\system32\catroot2
2015-09-18 21:36:28 ----D---- C:\ProgramData\NVIDIA
2015-09-18 21:29:07 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-18 21:15:39 ----D---- C:\Intel
2015-09-18 19:55:44 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-09-18 17:56:38 ----AD---- C:\Program Files (x86)\QuickTime
2015-09-18 17:50:53 ----D---- C:\Program Files\glassfish-4.1
2015-09-18 15:25:49 ----SD---- C:\Users\Jozef\AppData\Roaming\Microsoft
2015-09-17 18:50:11 ----D---- C:\Program Files (x86)\Common Files
2015-09-17 18:43:52 ----D---- C:\Program Files\Common Files
2015-09-17 11:50:17 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-09-15 19:12:10 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-09-15 12:18:22 ----D---- C:\ProgramData\Skype
2015-09-15 12:18:09 ----RD---- C:\Program Files (x86)\Skype
2015-09-13 12:39:07 ----D---- C:\Program Files (x86)\PSPad editor
2015-09-11 19:39:10 ----D---- C:\WINDOWS\system32\MRT
2015-09-11 05:45:54 ----D---- C:\WINDOWS\system32\appraiser
2015-09-11 05:45:54 ----D---- C:\WINDOWS\AppPatch
2015-09-11 05:45:54 ----D---- C:\Program Files\Windows Journal
2015-09-09 22:32:24 ----D---- C:\WINDOWS\system32\NDF
2015-09-07 16:53:55 ----D---- C:\ProgramData\Microsoft Help
2015-09-07 16:53:10 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-09-07 16:53:09 ----ASD---- C:\ProgramData\Microsoft
2015-09-05 18:31:33 ----AD---- C:\Program Files (x86)\VirtuaWin
2015-09-05 13:05:47 ----D---- C:\Games
2015-09-05 12:38:13 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-09-05 10:44:04 ----AD---- C:\Program Files\Classic Shell
2015-09-05 10:31:12 ----AD---- C:\Program Files (x86)\TeamViewer
2015-09-04 17:59:14 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-09-04 17:59:13 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2015-09-04 17:59:13 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2015-09-04 17:59:13 ----A---- C:\WINDOWS\system32\DDPA64.dll
2015-09-01 17:59:56 ----D---- C:\Users\Jozef\AppData\Roaming\transmission
2015-08-31 04:15:33 ----D---- C:\WINDOWS\system32\oobe
2015-08-31 04:15:33 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-29 00:01:54 ----D---- C:\WINDOWS\system32\WDI
2015-08-27 03:37:01 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2015-08-27 03:37:01 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-08-27 03:36:47 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2015-08-27 03:36:47 ----A---- C:\WINDOWS\system32\nvspbridge64.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 cm_km;Kaspersky Lab ZAO Cryptographic Module x64 (Weak); C:\WINDOWS\system32\DRIVERS\cm_km.sys [2015-07-06 389816]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-08-02 644968]
R0 IntelHSWPcc;IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [2013-08-19 77456]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2015-06-22 478392]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [2015-06-06 53432]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-08-31 40264]
R1 EpfwLWF;@oem92.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-07-14 53360]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\WINDOWS\system32\DRIVERS\klbackupflt.sys [2015-06-27 70512]
R1 klhk;Kaspersky Lab service driver; C:\WINDOWS\system32\DRIVERS\klhk.sys [2015-07-04 227000]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2015-06-30 937656]
R1 KLIM6;@oem87.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2015-06-11 39608]
R1 klpd;Kaspersky Lab format recognizer driver; C:\WINDOWS\system32\DRIVERS\klpd.sys [2015-09-26 41352]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2015-06-26 78008]
R1 Klwtp;Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2015-06-16 102584]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2015-06-23 187056]
R1 SMIDriver;SMIDriver; C:\WINDOWS\system32\drivers\smi.sys [2015-03-03 19656]
R2 hcmon;VMware hcmon; \??\C:\WINDOWS\system32\drivers\hcmon.sys [2015-05-22 55488]
R2 IntelHaxm;Intel HAXM Service; C:\WINDOWS\system32\DRIVERS\IntelHaxm.sys [2015-07-15 84992]
R2 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2015-06-06 68280]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 CnxtHdAudService;@oem66.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-09-04 1561728]
R3 Hamachi;@oem103.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-07-14 45680]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2015-07-17 72400]
R3 ibtusb;@oem79.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2015-03-20 253680]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-09-19 6416792]
R3 iwdbus;@oem51.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-06-26 39480]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2015-06-30 171192]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2015-06-06 41656]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2015-06-07 41656]
R3 MEIx64;@oem72.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2015-07-10 3496216]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-08-31 11188880]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-08-27 19576]
R3 nvvad_WaveExtensible;@oem78.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-08-11 50472]
R3 rt640x64;@oem82.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-18 895256]
R3 RTSPER;@oem80.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-06-15 761600]
R3 rtsuvc;@oem28.inf,%rtsuvc.DeviceDesc%;Integrated Camera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-06-20 8244312]
R3 SensorsSimulatorDriver;@oem7.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2015-07-10 214016]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-08-22 52912]
R3 SynTP;@oem19.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-08-22 629440]
R3 tap0901;@oem104.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2014-11-05 27136]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2015-06-24 30328]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S1 ndiskhaz;Azzouzi HotSpot LightWeight Filter; C:\WINDOWS\system32\DRIVERS\ndiskhaz.sys [2012-12-07 30536]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-08-20 929280]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 intaud_WaveExtensible;@oem14.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-06-26 50232]
S3 IntcDAud;@oem101.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-08 473864]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-07-30 934752]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
S4 klkbdflt2;Kaspersky Lab KlKbdFlt2; C:\WINDOWS\system32\DRIVERS\klkbdflt2.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVP16.0.0;Kaspersky Anti-Virus Service 16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe [2015-09-25 194000]
R2 Bonjour Service;Xamarin Bonjour Service; C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe [2015-09-17 384512]
R2 ClickToRunSvc;Služba Klikni a spusti balíka Microsoft Office; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2015-09-11 2774104]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 CronService;Cron Service; C:\Windows\Prey\wpxsvc.exe [2015-01-21 611854]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2015-04-10 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-08-27 1155192]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-07-14 2540904]
R2 IBMPMSVC;@oem35.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2015-07-17 156920]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-09-19 361376]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2015-07-09 21232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LabNetworkAgentService;Visual Studio Lab Network Agent Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\IDE\LabNetworkAgentService.exe [2015-06-28 562904]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2014-04-07 110128]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2014-07-08 115184]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-07-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 MyPublicWiFiService;MyPublicWiFi Service; C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe [2013-04-03 756224]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-08-27 1872504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-08-27 5544568]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-08-25 937592]
R2 OneSyncSvc_Session1;Sync Host_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-10-20 130024]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-08-22 255168]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Kontaktné údaje_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 LabAgentService;Visual Studio Lab Agent Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\IDE\LabAgentService.exe [2015-06-28 147136]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2015-07-30 5632]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-09-19 293272]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 Disconnect Desktop Updater;Disconnect Desktop Updater; C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\Disconnect Desktop Updater.exe [2015-07-23 358400]
S3 disconnect-openvpn;disconnect-openvpn; C:\Users\Jozef\AppData\Roaming\Disconnect\Disconnect Desktop\nssm.exe [2014-08-31 338944]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-09 148136]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-08-13 150600]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-07-30 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2015-07-01 22008]

-----------------EOF-----------------

[Rudy]

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

[g11193979@trbvm.com]

zdravim...dakujem
vyzera ze je vsetko OK !

[Rudy]

To jsem rád. Nemáte zač!