VIRY.CZ

dobrý den , prosím o preventivní prohlídku


Logfile of random's system information tool 1.10 (written by random/random)
Run by Libina at 2015-11-13 10:45:54
Microsoft Windows 10 Pro
System drive C: has 16 GB (26%) free of 60 GB
Total RAM: 2046 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:46:04, on 13.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15081.0_x86__8wekyb3d8bbwe\Video.UI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
D:\idm\RSIT.exe
C:\Program Files\trend micro\Libina.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=l45 ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{cfbe151d-f98a-4ffd-aa98-322bfd2a8d01}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe

--
End of file - 5804 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001Core.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001UA.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot

=========Mozilla firefox=========

ProfilePath - C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\extensions\
toolbar@centrumholdings.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-09-28 422936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-25 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-25 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 12111576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\System32\OneDriveSetup.exe [2015-07-10 7805120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*Restore]
C:\Windows\System32\rstrui.exe [2015-07-10 242176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*WerKernelReporting]
C:\WINDOWS\SYSTEM32\WerFault.exe [2015-07-10 260960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT]
Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-keylogger]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (cleanup)]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-03-17 748232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uninstall C:]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WheelMouse]
C:\ADVANC~1\wh_exec.exe [2000-01-01 147456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Libina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office Outlook 2007.lnk]
C:\Windows\INSTAL~1\{90120~2\outicon.exe [2015-11-13 845584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-13 10:45:54 ----D---- C:\rsit
2015-11-13 08:59:28 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2015-11-13 08:54:14 ----D---- C:\WINDOWS\$regcmp$
2015-11-11 08:16:28 ----D---- C:\Program Files\Adobe
2015-11-05 15:56:14 ----D---- C:\Program Files\Mozilla Firefox
2015-10-30 17:16:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-30 16:49:35 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-30 16:49:33 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-30 16:49:29 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 16:49:29 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-10-30 16:49:28 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 16:49:27 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 16:49:26 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 16:49:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 16:49:26 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 16:49:25 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-30 16:49:24 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-30 16:49:23 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-10-30 16:49:23 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 16:49:22 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 16:49:22 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-10-30 16:49:19 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-30 16:49:17 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 16:49:16 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-10-30 16:49:13 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-10-30 16:49:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 16:49:07 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-10-30 16:49:07 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-10-30 14:30:33 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-10-30 14:29:55 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-10-25 17:43:59 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-10-25 17:43:55 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-25 17:43:54 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-10-25 17:19:34 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-10-25 17:09:38 ----ASH---- C:\hiberfil.sys
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-10-25 16:59:50 ----SD---- C:\Users\Libina\AppData\Roaming\Microsoft
2015-10-25 16:58:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-25 16:55:44 ----D---- C:\WINDOWS\system32\RTCOM
2015-10-25 16:55:44 ----D---- C:\Program Files\Realtek
2015-10-25 16:54:53 ----D---- C:\WINDOWS\Prefetch
2015-10-25 16:53:42 ----ASH---- C:\swapfile.sys
2015-10-25 16:53:41 ----ASH---- C:\pagefile.sys
2015-10-25 16:52:23 ----DC---- C:\WINDOWS\Panther
2015-10-25 16:51:25 ----SHD---- C:\Recovery
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-25 16:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\jscript.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\XPSViewer
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\msmq
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-10-25 16:39:45 ----D---- C:\Program Files\Reference Assemblies
2015-10-25 16:39:45 ----D---- C:\Program Files\MSBuild
2015-10-25 16:39:45 ----D---- C:\inetpub
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-25 16:38:44 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-25 15:06:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-25 12:58:13 ----D---- C:\Users\Libina\AppData\Roaming\Sun
2015-10-25 11:29:19 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-10-25 11:29:18 ----A---- C:\WINDOWS\system32\WavesGUILib.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tosade.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\TepeqAPO.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tadefxapo2.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRRPTR.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRAPO.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\sltech32.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\slprp32.dll
2015-10-25 11:29:13 ----A---- C:\WINDOWS\system32\slcnt32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\sl3apo32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-10-25 11:29:03 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-10-25 11:28:53 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-10-25 11:28:52 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-10-25 11:28:49 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-10-25 11:28:47 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-25 11:28:46 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-25 11:28:44 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-10-25 11:28:41 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-25 11:28:40 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2015-10-25 11:28:32 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2015-10-25 11:28:27 ----A---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2015-10-25 11:28:26 ----A---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-25 11:28:24 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-10-25 11:28:22 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-10-25 11:28:21 ----A---- C:\WINDOWS\system32\ICEsoundAPO.dll
2015-10-25 11:28:10 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PREC32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PLFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PGFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-10-25 11:28:07 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-10-25 11:28:04 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-10-25 11:28:03 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-10-25 11:27:58 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\CX32APO.dll
2015-10-25 11:27:53 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-25 11:27:52 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AcpiServiceVnA.dll
2015-10-25 11:26:54 ----HD---- C:\Program Files\Temp
2015-10-25 11:26:48 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-10-17 12:47:55 ----D---- C:\Program Files\Common Files\SWF Studio
2015-10-17 12:46:23 ----D---- C:\Program Files\Disney Interactive
2015-10-17 12:45:54 ----A---- C:\WINDOWS\disney.ini
2015-10-17 12:45:52 ----A---- C:\WINDOWS\disneysy.ini
2015-10-16 13:29:44 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys

======List of files/folders modified in the last 1 month======

2015-11-13 10:46:04 ----D---- C:\Program Files\trend micro
2015-11-13 10:33:25 ----D---- C:\WINDOWS\Temp
2015-11-13 10:33:25 ----D---- C:\WINDOWS\System32
2015-11-13 10:23:36 ----D---- C:\WINDOWS\system32\config
2015-11-13 10:10:40 ----D---- C:\WINDOWS\WinSxS
2015-11-13 09:57:00 ----D---- C:\WINDOWS\system32\sru
2015-11-13 09:33:53 ----D---- C:\Program Files\Defraggler
2015-11-13 09:19:27 ----D---- C:\Program Files\WinRAR
2015-11-13 09:03:07 ----D---- C:\WINDOWS\AppReadiness
2015-11-13 09:00:53 ----D---- C:\WINDOWS\system32\drivers
2015-11-13 08:58:09 ----D---- C:\Windows
2015-11-13 08:57:12 ----D---- C:\WINDOWS\INF
2015-11-13 08:56:51 ----D---- C:\WINDOWS\debug
2015-11-13 08:56:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-13 08:55:23 ----SHD---- C:\WINDOWS\Installer
2015-11-13 08:55:08 ----D---- C:\ProgramData\Microsoft Help
2015-11-13 08:54:52 ----SHD---- C:\Boot
2015-11-13 08:53:20 ----D---- C:\WINDOWS\CbsTemp
2015-11-13 08:52:26 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-13 08:45:46 ----HD---- C:\Program Files\WindowsApps
2015-11-11 19:49:23 ----D---- C:\WINDOWS\system32\catroot2
2015-11-11 08:16:57 ----D---- C:\WINDOWS\system32\Tasks
2015-11-11 08:16:28 ----RD---- C:\Program Files
2015-11-11 08:16:28 ----D---- C:\Program Files\Common Files\Adobe
2015-11-11 08:16:23 ----D---- C:\ProgramData\Adobe
2015-11-11 08:03:02 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-10 20:06:42 ----D---- C:\Users\Libina\AppData\Roaming\AIMP3
2015-11-10 13:24:36 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2015-11-09 08:40:42 ----SHD---- C:\System Volume Information
2015-11-06 13:30:54 ----D---- C:\Program Files\Electronic Arts
2015-11-06 13:30:53 ----HD---- C:\Program Files\InstallShield Installation Information
2015-11-05 19:15:58 ----D---- C:\WINDOWS\rescache
2015-11-05 17:04:05 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-03 19:58:58 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2015-11-03 19:20:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-03 08:30:42 ----RD---- C:\WINDOWS\assembly
2015-11-02 14:30:08 ----D---- C:\WINDOWS\system32\cs-CZ
2015-11-02 14:30:06 ----D---- C:\WINDOWS\system32\appraiser
2015-11-02 14:29:14 ----D---- C:\WINDOWS\apppatch
2015-10-30 17:15:47 ----D---- C:\WINDOWS\Logs
2015-10-30 14:29:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-30 12:39:25 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-30 12:37:11 ----RD---- C:\Users
2015-10-26 18:13:00 ----HD---- C:\ProgramData
2015-10-26 18:08:38 ----D---- C:\WINDOWS\Tasks
2015-10-26 08:52:34 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-10-26 08:27:37 ----D---- C:\WINDOWS\AppCompat
2015-10-26 08:26:27 ----D---- C:\WINDOWS\system32\WDI
2015-10-25 19:09:50 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-25 18:38:04 ----D---- C:\WINDOWS\ModemLogs
2015-10-25 17:47:32 ----D---- C:\WINDOWS\OCR
2015-10-25 17:33:47 ----D---- C:\WINDOWS\system32\restore
2015-10-25 17:22:08 ----D---- C:\Program Files\Windows NT
2015-10-25 17:20:35 ----D---- C:\WINDOWS\Registration
2015-10-25 17:19:07 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-25 17:18:38 ----RSD---- C:\WINDOWS\Media
2015-10-25 17:15:15 ----D---- C:\WINDOWS\system32\wbem
2015-10-25 17:07:50 ----D---- C:\WINDOWS\system32\vbox
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\NDF
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\en-US
2015-10-25 17:07:48 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-25 17:07:46 ----D---- C:\WINDOWS\ShellNew
2015-10-25 17:07:45 ----RSD---- C:\WINDOWS\Fonts
2015-10-25 17:03:55 ----D---- C:\WINDOWS\system32\SPReview
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\oodag
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\migration
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\IME
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\EventProviders
2015-10-25 17:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-10-25 17:03:13 ----D---- C:\WINDOWS\system32\(app)
2015-10-25 17:03:12 ----D---- C:\WINDOWS\System
2015-10-25 17:03:11 ----D---- C:\WINDOWS\schemas
2015-10-25 17:03:11 ----D---- C:\WINDOWS\Resources
2015-10-25 17:02:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-10-25 17:02:56 ----D---- C:\WINDOWS\Help
2015-10-25 17:02:52 ----SD---- C:\ProgramData\Microsoft
2015-10-25 17:02:42 ----D---- C:\Program Files\Windows Mail
2015-10-25 17:02:40 ----D---- C:\Program Files\Microsoft.NET
2015-10-25 17:02:39 ----D---- C:\Program Files\HP
2015-10-25 17:02:38 ----D---- C:\Program Files\DVD Maker
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files\System
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-25 17:02:34 ----D---- C:\Program Files\AMD AVT
2015-10-25 17:01:29 ----D---- C:\WINDOWS\system32\Recovery
2015-10-25 17:01:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-25 16:58:23 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-25 16:47:56 ----SD---- C:\WINDOWS\system32\F12
2015-10-25 16:47:56 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-25 16:47:56 ----D---- C:\WINDOWS\system32\Boot
2015-10-25 16:47:56 ----D---- C:\WINDOWS\Provisioning
2015-10-25 16:47:56 ----D---- C:\WINDOWS\L2Schemas
2015-10-25 16:42:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\MUI
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-10-25 16:39:45 ----D---- C:\WINDOWS\PolicyDefinitions
2015-10-25 16:39:45 ----D---- C:\Program Files\Windows Media Player
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-10-25 16:39:17 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-10-25 16:39:11 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-10-25 16:39:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-10-25 16:05:45 ----RASH---- C:\BOOTSECT.BAK
2015-10-25 15:06:12 ----D---- C:\Program Files\Java
2015-10-20 17:07:37 ----D---- C:\Program Files\Internet Download Manager
2015-10-19 11:41:18 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2015-10-17 12:45:53 ----D---- C:\Program Files\Common Files\InstallShield
2015-10-16 14:31:28 ----D---- C:\Program Files\EA GAMES
2015-10-16 13:48:55 ----D---- C:\WINDOWS\system32\MRT
2015-10-16 13:40:45 ----A---- C:\WINDOWS\system32\MRT.exe
2015-10-15 07:50:08 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-20 30616]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 MpKsl0539dd29;MpKsl0539dd29; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B083D1EA-8AD8-407B-88B3-BF0BC46870A0}\MpKsl0539dd29.sys [2015-11-13 39168]
R1 MpKsl82b1a32f;MpKsl82b1a32f; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{46DC04C7-AA74-452B-BD59-0A967C628A46}\MpKsl82b1a32f.sys [2015-10-30 39168]
R1 MpKslb33c56e6;MpKslb33c56e6; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B083D1EA-8AD8-407B-88B3-BF0BC46870A0}\MpKslb33c56e6.sys [2015-11-13 39168]
R1 tmcomm;tmcomm; C:\WINDOWS\system32\DRIVERS\tmcomm.sys [2015-05-29 303744]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2015-06-12 123968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW73.sys [2013-02-14 79872]
R3 BlueletAudio;@oem30.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-06-24 34312]
R3 BlueletSCOAudio;@oem68.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-06-24 27656]
R3 BT;@oem29.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys [2007-03-05 18320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3343832]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-10-25 130048]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-07-10 8704]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-10 492032]
R3 t_mouse.sys;@oem92.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
S0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S1 krnl_akl;Anti-keylogger Kernel Service; \??\C:\Windows\system32\drivers\krnl_akl.sys [2012-04-23 367824]
S1 oxser;@oem72.inf,%oxser.SVCDESC%;OX16C95x Serial port driver; C:\WINDOWS\system32\DRIVERS\oxser.sys [2003-04-29 51169]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-25 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-10-30 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 23256]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 51928]
S3 mvusbews;@oem33.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2013-01-24 47360]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-07-03 16024]
S3 ssudmdm;@oem79.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-10-30 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2011-05-11 99896]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-10-25 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Start BT in service;Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2008-03-19 51816]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 OneSyncSvc_Session2;Hostitel synchronizace_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-25 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2008-03-19 166520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-05-25 1064312]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 PimIndexMaintenanceSvc_Session2;Data kontaktů_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-07-03 1228504]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-07-03 660184]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.020 - Logfile created 14/11/2015 at 21:02:12
# Updated 13/11/2015 by Xplode
# Database : 2015-11-13.3 [Server]
# Operating system : Windows 10 Pro (x86)
# Username : Libina - LIBINA
# Running from : C:\Users\Libina\Desktop\adwcleaner_5.020.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\_acestream_cache_
[-] Folder Deleted : C:\Users\Libina\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\Libina\AppData\LocalLow\.acestream
[-] Folder Deleted : C:\Users\Libina\AppData\Roaming\.acestream

***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{00011268-E188-40DF-A514-835FCD78B1BF}]
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.

***** [ Web browsers ] *****

[-] [C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "eShield Safe Web");
[-] [C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\shszqjk7.default\prefs.js] [Preference] Deleted : user_pref("network.hxxp.request.max-start-delay", 0);
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.sweetim.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ejocekekgcaldnmjngfdbmbeebcekelc
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mfhnkgpdlogbknkhlgdjlejeljbhflim

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C7].txt - [2421 bytes] ##########

Dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Libina at 2015-11-14 21:37:21
Microsoft Windows 10 Pro
System drive C: has 14 GB (24%) free of 60 GB
Total RAM: 2046 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:37:30, on 14.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Libina\Desktop\RSIT.exe
C:\Program Files\trend micro\Libina.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=l45 ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{cfbe151d-f98a-4ffd-aa98-322bfd2a8d01}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe

--
End of file - 5306 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001Core.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001UA.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot

=========Mozilla firefox=========

ProfilePath - C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\extensions\
toolbar@centrumholdings.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-09-28 422936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-25 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-25 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 12111576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\System32\OneDriveSetup.exe [2015-07-10 7805120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*Restore]
C:\Windows\System32\rstrui.exe [2015-07-10 242176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*WerKernelReporting]
C:\WINDOWS\SYSTEM32\WerFault.exe [2015-07-10 260960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT]
Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-keylogger]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (cleanup)]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-03-17 748232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uninstall C:]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WheelMouse]
C:\ADVANC~1\wh_exec.exe [2000-01-01 147456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Libina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office Outlook 2007.lnk]
C:\Windows\INSTAL~1\{90120~2\outicon.exe [2015-11-14 845584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-13 10:45:54 ----D---- C:\rsit
2015-11-13 08:59:28 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2015-11-13 08:54:14 ----D---- C:\WINDOWS\$regcmp$
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-13 08:42:58 ----A---- C:\WINDOWS\system32\esent.dll
2015-11-13 08:42:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-11-13 08:42:56 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-11-13 08:42:54 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-11-13 08:42:52 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-11-13 08:42:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-11-13 08:42:43 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-11-13 08:42:42 ----A---- C:\WINDOWS\system32\jscript.dll
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 08:16:28 ----D---- C:\Program Files\Adobe
2015-11-05 15:56:14 ----D---- C:\Program Files\Mozilla Firefox
2015-10-30 17:16:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-30 14:30:33 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-10-30 14:29:55 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-10-25 17:43:59 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-10-25 17:43:55 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-25 17:43:54 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-10-25 17:19:34 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-10-25 17:09:38 ----ASH---- C:\hiberfil.sys
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-10-25 16:59:50 ----SD---- C:\Users\Libina\AppData\Roaming\Microsoft
2015-10-25 16:58:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-25 16:55:44 ----D---- C:\WINDOWS\system32\RTCOM
2015-10-25 16:55:44 ----D---- C:\Program Files\Realtek
2015-10-25 16:54:53 ----D---- C:\WINDOWS\Prefetch
2015-10-25 16:53:42 ----ASH---- C:\swapfile.sys
2015-10-25 16:53:41 ----ASH---- C:\pagefile.sys
2015-10-25 16:52:23 ----DC---- C:\WINDOWS\Panther
2015-10-25 16:51:25 ----SHD---- C:\Recovery
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-25 16:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\XPSViewer
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\msmq
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-10-25 16:39:45 ----D---- C:\Program Files\Reference Assemblies
2015-10-25 16:39:45 ----D---- C:\Program Files\MSBuild
2015-10-25 16:39:45 ----D---- C:\inetpub
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-25 16:38:44 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-25 15:06:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-25 12:58:13 ----D---- C:\Users\Libina\AppData\Roaming\Sun
2015-10-25 11:29:19 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-10-25 11:29:18 ----A---- C:\WINDOWS\system32\WavesGUILib.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tosade.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\TepeqAPO.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tadefxapo2.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRRPTR.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRAPO.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\sltech32.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\slprp32.dll
2015-10-25 11:29:13 ----A---- C:\WINDOWS\system32\slcnt32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\sl3apo32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-10-25 11:29:03 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-10-25 11:28:53 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-10-25 11:28:52 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-10-25 11:28:49 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-10-25 11:28:47 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-25 11:28:46 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-25 11:28:44 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-10-25 11:28:41 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-25 11:28:40 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2015-10-25 11:28:32 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2015-10-25 11:28:27 ----A---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2015-10-25 11:28:26 ----A---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-25 11:28:24 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-10-25 11:28:22 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-10-25 11:28:21 ----A---- C:\WINDOWS\system32\ICEsoundAPO.dll
2015-10-25 11:28:10 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PREC32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PLFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PGFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-10-25 11:28:07 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-10-25 11:28:04 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-10-25 11:28:03 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-10-25 11:27:58 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\CX32APO.dll
2015-10-25 11:27:53 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-25 11:27:52 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AcpiServiceVnA.dll
2015-10-25 11:26:54 ----HD---- C:\Program Files\Temp
2015-10-25 11:26:48 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-10-17 12:47:55 ----D---- C:\Program Files\Common Files\SWF Studio
2015-10-17 12:46:23 ----D---- C:\Program Files\Disney Interactive
2015-10-17 12:45:54 ----A---- C:\WINDOWS\disney.ini
2015-10-17 12:45:52 ----A---- C:\WINDOWS\disneysy.ini
2015-10-16 13:29:44 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys

======List of files/folders modified in the last 1 month======

2015-11-14 21:37:23 ----D---- C:\Program Files\trend micro
2015-11-14 21:28:22 ----D---- C:\WINDOWS\Temp
2015-11-14 21:28:22 ----D---- C:\WINDOWS\System32
2015-11-14 21:12:32 ----D---- C:\WINDOWS\AppReadiness
2015-11-14 21:02:51 ----D---- C:\WINDOWS\system32\sru
2015-11-14 21:02:12 ----D---- C:\AdwCleaner
2015-11-14 10:04:00 ----SHD---- C:\WINDOWS\Installer
2015-11-14 10:00:25 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-14 10:00:22 ----RD---- C:\WINDOWS\assembly
2015-11-14 09:54:19 ----D---- C:\WINDOWS\system32\config
2015-11-14 09:49:04 ----D---- C:\WINDOWS\WinSxS
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\appraiser
2015-11-14 09:46:17 ----D---- C:\WINDOWS\apppatch
2015-11-14 09:46:15 ----D---- C:\WINDOWS\system32\drivers
2015-11-14 09:46:13 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-14 07:59:01 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2015-11-14 06:49:17 ----D---- C:\ProgramData\Microsoft Help
2015-11-14 06:47:44 ----HD---- C:\Program Files\WindowsApps
2015-11-14 06:47:16 ----D---- C:\WINDOWS\CbsTemp
2015-11-14 06:45:20 ----D---- C:\WINDOWS\system32\MRT
2015-11-14 06:37:10 ----D---- C:\WINDOWS\debug
2015-11-14 06:37:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-13 19:02:54 ----D---- C:\Users\Libina\AppData\Roaming\AIMP3
2015-11-13 18:46:33 ----D---- C:\WINDOWS\INF
2015-11-13 09:33:53 ----D---- C:\Program Files\Defraggler
2015-11-13 09:19:27 ----D---- C:\Program Files\WinRAR
2015-11-13 08:58:09 ----D---- C:\Windows
2015-11-13 08:56:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-13 08:54:52 ----SHD---- C:\Boot
2015-11-11 19:49:23 ----D---- C:\WINDOWS\system32\catroot2
2015-11-11 08:16:57 ----D---- C:\WINDOWS\system32\Tasks
2015-11-11 08:16:28 ----RD---- C:\Program Files
2015-11-11 08:16:28 ----D---- C:\Program Files\Common Files\Adobe
2015-11-11 08:16:23 ----D---- C:\ProgramData\Adobe
2015-11-11 08:03:02 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-09 08:40:42 ----SHD---- C:\System Volume Information
2015-11-06 13:30:54 ----D---- C:\Program Files\Electronic Arts
2015-11-06 13:30:53 ----HD---- C:\Program Files\InstallShield Installation Information
2015-11-05 19:15:58 ----D---- C:\WINDOWS\rescache
2015-11-03 19:58:58 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2015-11-03 19:20:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-30 17:15:47 ----D---- C:\WINDOWS\Logs
2015-10-30 14:29:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-30 12:39:25 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-30 12:37:11 ----RD---- C:\Users
2015-10-26 18:13:00 ----HD---- C:\ProgramData
2015-10-26 18:08:38 ----D---- C:\WINDOWS\Tasks
2015-10-26 08:52:34 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-10-26 08:27:37 ----D---- C:\WINDOWS\AppCompat
2015-10-26 08:26:27 ----D---- C:\WINDOWS\system32\WDI
2015-10-25 19:09:50 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-25 18:38:04 ----D---- C:\WINDOWS\ModemLogs
2015-10-25 17:47:32 ----D---- C:\WINDOWS\OCR
2015-10-25 17:33:47 ----D---- C:\WINDOWS\system32\restore
2015-10-25 17:22:08 ----D---- C:\Program Files\Windows NT
2015-10-25 17:20:35 ----D---- C:\WINDOWS\Registration
2015-10-25 17:19:07 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-25 17:18:38 ----RSD---- C:\WINDOWS\Media
2015-10-25 17:15:15 ----D---- C:\WINDOWS\system32\wbem
2015-10-25 17:07:50 ----D---- C:\WINDOWS\system32\vbox
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\NDF
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\en-US
2015-10-25 17:07:48 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-25 17:07:46 ----D---- C:\WINDOWS\ShellNew
2015-10-25 17:07:45 ----RSD---- C:\WINDOWS\Fonts
2015-10-25 17:03:55 ----D---- C:\WINDOWS\system32\SPReview
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\oodag
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\migration
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\IME
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\EventProviders
2015-10-25 17:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-10-25 17:03:13 ----D---- C:\WINDOWS\system32\(app)
2015-10-25 17:03:12 ----D---- C:\WINDOWS\System
2015-10-25 17:03:11 ----D---- C:\WINDOWS\schemas
2015-10-25 17:03:11 ----D---- C:\WINDOWS\Resources
2015-10-25 17:02:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-10-25 17:02:56 ----D---- C:\WINDOWS\Help
2015-10-25 17:02:52 ----SD---- C:\ProgramData\Microsoft
2015-10-25 17:02:42 ----D---- C:\Program Files\Windows Mail
2015-10-25 17:02:40 ----D---- C:\Program Files\Microsoft.NET
2015-10-25 17:02:39 ----D---- C:\Program Files\HP
2015-10-25 17:02:38 ----D---- C:\Program Files\DVD Maker
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files\System
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-25 17:02:34 ----D---- C:\Program Files\AMD AVT
2015-10-25 17:01:29 ----D---- C:\WINDOWS\system32\Recovery
2015-10-25 17:01:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-25 16:58:23 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-25 16:47:56 ----SD---- C:\WINDOWS\system32\F12
2015-10-25 16:47:56 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-25 16:47:56 ----D---- C:\WINDOWS\system32\Boot
2015-10-25 16:47:56 ----D---- C:\WINDOWS\Provisioning
2015-10-25 16:47:56 ----D---- C:\WINDOWS\L2Schemas
2015-10-25 16:42:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\MUI
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-10-25 16:39:45 ----D---- C:\WINDOWS\PolicyDefinitions
2015-10-25 16:39:45 ----D---- C:\Program Files\Windows Media Player
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-10-25 16:39:17 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-10-25 16:39:11 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-10-25 16:39:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-10-25 16:05:45 ----RASH---- C:\BOOTSECT.BAK
2015-10-25 15:06:12 ----D---- C:\Program Files\Java
2015-10-20 17:07:37 ----D---- C:\Program Files\Internet Download Manager
2015-10-19 11:41:18 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2015-10-17 12:45:53 ----D---- C:\Program Files\Common Files\InstallShield
2015-10-16 14:31:28 ----D---- C:\Program Files\EA GAMES
2015-10-15 07:50:08 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-20 30616]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 MpKslb46529e3;MpKslb46529e3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D0780C77-F563-4316-AD6B-1E15F78AD8F9}\MpKslb46529e3.sys [2015-11-14 39168]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2015-06-12 123968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW73.sys [2013-02-14 79872]
R3 BlueletAudio;@oem30.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-06-24 34312]
R3 BlueletSCOAudio;@oem68.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-06-24 27656]
R3 BT;@oem29.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys [2007-03-05 18320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3343832]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 23256]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-10-25 130048]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-07-10 8704]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-10 492032]
R3 t_mouse.sys;@oem92.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
S0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S1 krnl_akl;Anti-keylogger Kernel Service; \??\C:\Windows\system32\drivers\krnl_akl.sys [2012-04-23 367824]
S1 oxser;@oem72.inf,%oxser.SVCDESC%;OX16C95x Serial port driver; C:\WINDOWS\system32\DRIVERS\oxser.sys [2003-04-29 51169]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-25 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-10-30 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 51928]
S3 mvusbews;@oem33.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2013-01-24 47360]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-07-03 16024]
S3 ssudmdm;@oem79.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-10-30 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2011-05-11 99896]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-10-25 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Start BT in service;Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2008-03-19 51816]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 OneSyncSvc_Session2;Hostitel synchronizace_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-25 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2008-03-19 166520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-05-25 1064312]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 PimIndexMaintenanceSvc_Session2;Data kontaktů_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-07-03 1228504]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-07-03 660184]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc_Session2;Úložiště uživatelských dat_Session2; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001Core.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Libina at 2015-11-15 21:16:02
Microsoft Windows 10 Pro
System drive C: has 15 GB (24%) free of 60 GB
Total RAM: 2046 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:16:14, on 15.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\Users\Libina\Desktop\RSIT.exe
C:\Program Files\trend micro\Libina.exe
C:\WINDOWS\system32\svchost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=l45 ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{cfbe151d-f98a-4ffd-aa98-322bfd2a8d01}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe

--
End of file - 5264 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot

=========Mozilla firefox=========

ProfilePath - C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll

C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\extensions\
toolbar@centrumholdings.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-09-28 422936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-25 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-25 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 12111576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\System32\OneDriveSetup.exe [2015-07-10 7805120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*Restore]
C:\Windows\System32\rstrui.exe [2015-07-10 242176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*WerKernelReporting]
C:\WINDOWS\SYSTEM32\WerFault.exe [2015-07-10 260960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT]
Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-keylogger]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (cleanup)]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-03-17 748232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uninstall C:]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WheelMouse]
C:\ADVANC~1\wh_exec.exe [2000-01-01 147456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Libina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office Outlook 2007.lnk]
C:\Windows\INSTAL~1\{90120~2\outicon.exe [2015-11-14 845584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-15 21:09:11 ----D---- C:\_OTM
2015-11-13 10:45:54 ----D---- C:\rsit
2015-11-13 08:59:28 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2015-11-13 08:54:14 ----D---- C:\WINDOWS\$regcmp$
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-13 08:42:58 ----A---- C:\WINDOWS\system32\esent.dll
2015-11-13 08:42:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-11-13 08:42:56 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-11-13 08:42:54 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-11-13 08:42:52 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-11-13 08:42:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-11-13 08:42:43 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-11-13 08:42:42 ----A---- C:\WINDOWS\system32\jscript.dll
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 08:16:28 ----D---- C:\Program Files\Adobe
2015-11-05 15:56:14 ----D---- C:\Program Files\Mozilla Firefox
2015-10-30 17:16:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-30 14:30:33 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-10-30 14:29:55 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-10-25 17:43:59 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-10-25 17:43:55 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-25 17:43:54 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-10-25 17:19:34 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-10-25 17:09:38 ----ASH---- C:\hiberfil.sys
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-10-25 16:59:50 ----SD---- C:\Users\Libina\AppData\Roaming\Microsoft
2015-10-25 16:58:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-25 16:55:44 ----D---- C:\WINDOWS\system32\RTCOM
2015-10-25 16:55:44 ----D---- C:\Program Files\Realtek
2015-10-25 16:54:53 ----D---- C:\WINDOWS\Prefetch
2015-10-25 16:53:42 ----ASH---- C:\swapfile.sys
2015-10-25 16:53:41 ----ASH---- C:\pagefile.sys
2015-10-25 16:52:23 ----DC---- C:\WINDOWS\Panther
2015-10-25 16:51:25 ----SHD---- C:\Recovery
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-25 16:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\XPSViewer
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\msmq
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-10-25 16:39:45 ----D---- C:\Program Files\Reference Assemblies
2015-10-25 16:39:45 ----D---- C:\Program Files\MSBuild
2015-10-25 16:39:45 ----D---- C:\inetpub
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-25 16:38:44 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-25 15:06:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-25 12:58:13 ----D---- C:\Users\Libina\AppData\Roaming\Sun
2015-10-25 11:29:19 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-10-25 11:29:18 ----A---- C:\WINDOWS\system32\WavesGUILib.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tosade.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\TepeqAPO.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tadefxapo2.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRRPTR.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRAPO.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\sltech32.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\slprp32.dll
2015-10-25 11:29:13 ----A---- C:\WINDOWS\system32\slcnt32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\sl3apo32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-10-25 11:29:03 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-10-25 11:28:53 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-10-25 11:28:52 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-10-25 11:28:49 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-10-25 11:28:47 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-25 11:28:46 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-25 11:28:44 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-10-25 11:28:41 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-25 11:28:40 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2015-10-25 11:28:32 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2015-10-25 11:28:27 ----A---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2015-10-25 11:28:26 ----A---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-25 11:28:24 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-10-25 11:28:22 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-10-25 11:28:21 ----A---- C:\WINDOWS\system32\ICEsoundAPO.dll
2015-10-25 11:28:10 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PREC32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PLFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PGFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-10-25 11:28:07 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-10-25 11:28:04 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-10-25 11:28:03 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-10-25 11:27:58 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\CX32APO.dll
2015-10-25 11:27:53 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-25 11:27:52 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AcpiServiceVnA.dll
2015-10-25 11:26:54 ----HD---- C:\Program Files\Temp
2015-10-25 11:26:48 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-10-17 12:47:55 ----D---- C:\Program Files\Common Files\SWF Studio
2015-10-17 12:46:23 ----D---- C:\Program Files\Disney Interactive
2015-10-17 12:45:54 ----A---- C:\WINDOWS\disney.ini
2015-10-17 12:45:52 ----A---- C:\WINDOWS\disneysy.ini
2015-10-16 13:29:44 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys

======List of files/folders modified in the last 1 month======

2015-11-15 21:16:11 ----D---- C:\Program Files\trend micro
2015-11-15 21:14:38 ----HD---- C:\Program Files\WindowsApps
2015-11-15 21:14:15 ----D---- C:\WINDOWS\AppReadiness
2015-11-15 21:14:10 ----D---- C:\WINDOWS\Temp
2015-11-15 21:14:07 ----D---- C:\WINDOWS\System32
2015-11-15 21:12:36 ----D---- C:\WINDOWS\system32\sru
2015-11-15 21:09:12 ----D---- C:\WINDOWS\Tasks
2015-11-15 21:08:28 ----SHD---- C:\System Volume Information
2015-11-14 21:02:12 ----D---- C:\AdwCleaner
2015-11-14 10:04:00 ----SHD---- C:\WINDOWS\Installer
2015-11-14 10:00:25 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-14 10:00:22 ----RD---- C:\WINDOWS\assembly
2015-11-14 09:54:19 ----D---- C:\WINDOWS\system32\config
2015-11-14 09:49:04 ----D---- C:\WINDOWS\WinSxS
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\appraiser
2015-11-14 09:46:17 ----D---- C:\WINDOWS\apppatch
2015-11-14 09:46:15 ----D---- C:\WINDOWS\system32\drivers
2015-11-14 09:46:13 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-14 07:59:01 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2015-11-14 06:49:17 ----D---- C:\ProgramData\Microsoft Help
2015-11-14 06:47:16 ----D---- C:\WINDOWS\CbsTemp
2015-11-14 06:45:20 ----D---- C:\WINDOWS\system32\MRT
2015-11-14 06:37:10 ----D---- C:\WINDOWS\debug
2015-11-14 06:37:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-13 19:02:54 ----D---- C:\Users\Libina\AppData\Roaming\AIMP3
2015-11-13 18:46:33 ----D---- C:\WINDOWS\INF
2015-11-13 09:33:53 ----D---- C:\Program Files\Defraggler
2015-11-13 09:19:27 ----D---- C:\Program Files\WinRAR
2015-11-13 08:58:09 ----D---- C:\Windows
2015-11-13 08:56:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-13 08:54:52 ----SHD---- C:\Boot
2015-11-11 19:49:23 ----D---- C:\WINDOWS\system32\catroot2
2015-11-11 08:16:57 ----D---- C:\WINDOWS\system32\Tasks
2015-11-11 08:16:28 ----RD---- C:\Program Files
2015-11-11 08:16:28 ----D---- C:\Program Files\Common Files\Adobe
2015-11-11 08:16:23 ----D---- C:\ProgramData\Adobe
2015-11-11 08:03:02 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-06 13:30:54 ----D---- C:\Program Files\Electronic Arts
2015-11-06 13:30:53 ----HD---- C:\Program Files\InstallShield Installation Information
2015-11-05 19:15:58 ----D---- C:\WINDOWS\rescache
2015-11-03 19:58:58 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2015-11-03 19:20:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-30 17:15:47 ----D---- C:\WINDOWS\Logs
2015-10-30 14:29:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-30 12:39:25 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-30 12:37:11 ----RD---- C:\Users
2015-10-26 18:13:00 ----HD---- C:\ProgramData
2015-10-26 08:52:34 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-10-26 08:27:37 ----D---- C:\WINDOWS\AppCompat
2015-10-26 08:26:27 ----D---- C:\WINDOWS\system32\WDI
2015-10-25 19:09:50 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-25 18:38:04 ----D---- C:\WINDOWS\ModemLogs
2015-10-25 17:47:32 ----D---- C:\WINDOWS\OCR
2015-10-25 17:33:47 ----D---- C:\WINDOWS\system32\restore
2015-10-25 17:22:08 ----D---- C:\Program Files\Windows NT
2015-10-25 17:20:35 ----D---- C:\WINDOWS\Registration
2015-10-25 17:19:07 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-25 17:18:38 ----RSD---- C:\WINDOWS\Media
2015-10-25 17:15:15 ----D---- C:\WINDOWS\system32\wbem
2015-10-25 17:07:50 ----D---- C:\WINDOWS\system32\vbox
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\NDF
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\en-US
2015-10-25 17:07:48 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-25 17:07:46 ----D---- C:\WINDOWS\ShellNew
2015-10-25 17:07:45 ----RSD---- C:\WINDOWS\Fonts
2015-10-25 17:03:55 ----D---- C:\WINDOWS\system32\SPReview
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\oodag
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\migration
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\IME
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\EventProviders
2015-10-25 17:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-10-25 17:03:13 ----D---- C:\WINDOWS\system32\(app)
2015-10-25 17:03:12 ----D---- C:\WINDOWS\System
2015-10-25 17:03:11 ----D---- C:\WINDOWS\schemas
2015-10-25 17:03:11 ----D---- C:\WINDOWS\Resources
2015-10-25 17:02:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-10-25 17:02:56 ----D---- C:\WINDOWS\Help
2015-10-25 17:02:52 ----SD---- C:\ProgramData\Microsoft
2015-10-25 17:02:42 ----D---- C:\Program Files\Windows Mail
2015-10-25 17:02:40 ----D---- C:\Program Files\Microsoft.NET
2015-10-25 17:02:39 ----D---- C:\Program Files\HP
2015-10-25 17:02:38 ----D---- C:\Program Files\DVD Maker
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files\System
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-25 17:02:34 ----D---- C:\Program Files\AMD AVT
2015-10-25 17:01:29 ----D---- C:\WINDOWS\system32\Recovery
2015-10-25 17:01:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-25 16:58:23 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-25 16:47:56 ----SD---- C:\WINDOWS\system32\F12
2015-10-25 16:47:56 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-25 16:47:56 ----D---- C:\WINDOWS\system32\Boot
2015-10-25 16:47:56 ----D---- C:\WINDOWS\Provisioning
2015-10-25 16:47:56 ----D---- C:\WINDOWS\L2Schemas
2015-10-25 16:42:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\MUI
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-10-25 16:39:45 ----D---- C:\WINDOWS\PolicyDefinitions
2015-10-25 16:39:45 ----D---- C:\Program Files\Windows Media Player
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-10-25 16:39:17 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-10-25 16:39:11 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-10-25 16:39:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-10-25 16:05:45 ----RASH---- C:\BOOTSECT.BAK
2015-10-25 15:06:12 ----D---- C:\Program Files\Java
2015-10-20 17:07:37 ----D---- C:\Program Files\Internet Download Manager
2015-10-19 11:41:18 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2015-10-17 12:45:53 ----D---- C:\Program Files\Common Files\InstallShield
2015-10-16 14:31:28 ----D---- C:\Program Files\EA GAMES

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-20 30616]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 MpKslb46529e3;MpKslb46529e3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D0780C77-F563-4316-AD6B-1E15F78AD8F9}\MpKslb46529e3.sys [2015-11-14 39168]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2015-06-12 123968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW73.sys [2013-02-14 79872]
R3 BlueletAudio;@oem30.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-06-24 34312]
R3 BlueletSCOAudio;@oem68.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-06-24 27656]
R3 BT;@oem29.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys [2007-03-05 18320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3343832]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 23256]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-10-25 130048]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-07-10 8704]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-10 492032]
R3 t_mouse.sys;@oem92.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
S0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S1 krnl_akl;Anti-keylogger Kernel Service; \??\C:\Windows\system32\drivers\krnl_akl.sys [2012-04-23 367824]
S1 oxser;@oem72.inf,%oxser.SVCDESC%;OX16C95x Serial port driver; C:\WINDOWS\system32\DRIVERS\oxser.sys [2003-04-29 51169]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-25 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-10-30 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 51928]
S3 mvusbews;@oem33.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2013-01-24 47360]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-07-03 16024]
S3 ssudmdm;@oem79.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-10-30 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 42848]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 21856]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2011-05-11 99896]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-10-25 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Start BT in service;Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2008-03-19 51816]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-25 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2008-03-19 166520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-05-25 1064312]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-07-03 1228504]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-07-03 660184]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]

-----------------EOF-----------------

Smazáno, log je již OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

Děkuji Vám . CHtěl bych se ještě zeptat jestli stačí to zabezpečení od microsoftu ( defender )

Defender není plnohodnotný antivir. My ho doporučujeme kombinovat s některým z antivirů jiných výrobců: http://forum.viry.cz/viewforum.php?f=29 . Bude stačit pro home použití některý z free antivirů. Upozorňuji ale, že žádný, ani ten sebelepší, antivir vám nezabrání zavirování, pokud se nebudete při brouzdání na webu chovat obezřetně. Nemáte zač!