Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2016-02-28 20:26:04
Microsoft Windows 10 Home
System drive C: has 45 GB (20%) free of 231 GB
Total RAM: 3982 MB (36% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:26:08, on 28. 2. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\eM Client\MailClient.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Java\jre1.8.0_73\bin\javaw.exe
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{77a2dced-c301-442e-bef8-8021202dffe3}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: @oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Bitdefender Antivirus Free Edition (gzserv) - Bitdefender - C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @oem31.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LnvMHService (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
O23 - Service: LocationTaskManager - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: LSCWinService - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SlimWare Utility Service Launcher (SlimService) - SlimWare Utilities, Inc. - C:\Program Files\SlimService\SlimServiceFactory.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10579 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f63af76c-f877-4efd-89d7-16e6a21f4b9d -SystemEventPortName:HostProcess-94dde6d3-e5e3-4281-900d-4c06cb0313bc -IoCancelEventPortName:HostProcess-1d6dc689-970a-479f-bc12-45d1bd045ff2 -NonStateChangingEventPortName:HostProcess-b74e6a89-550e-436c-b73f-519a1891399e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1d2c1f98-b0a4-4f9e-9a94-28965f430332 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7f0b0762-634d-4cda-acec-f621bf1dc546 -SystemEventPortName:HostProcess-556216cf-cebb-48e4-8fcd-ccba207b0dcd -IoCancelEventPortName:HostProcess-65b116ea-cf0d-4314-b029-88b9275ceb0c -NonStateChangingEventPortName:HostProcess-72d880ac-9e8c-42b3-8e7e-6873e1a61a3f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d56422ff-4366-4116-b430-6bb8472acf00 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4725511e-afcc-419e-a637-e55125f83827 -SystemEventPortName:HostProcess-aebd21c6-012d-43ef-8ad8-e999c8891cac -IoCancelEventPortName:HostProcess-14eca71f-a3da-4822-a916-1453bd658c97 -NonStateChangingEventPortName:HostProcess-1a272741-e6b8-430e-80eb-3ce6f963d7c0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:acb16726-d2a7-4918-bb27-8603bad0d61f -DeviceGroupId:
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-69d31210-cf44-43e9-b11c-96d4e130583b -SystemEventPortName:HostProcess-dab837ac-5f99-487d-ae18-c9c5cc8b029a -IoCancelEventPortName:HostProcess-969b914a-1cfa-4edc-b0a7-1eb09c35b0a9 -NonStateChangingEventPortName:HostProcess-83ad60f5-a155-4fe4-9332-f7c3cd4d121e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ade5aca4-9c7d-425c-818a-209a2d18a92f -DeviceGroupId:
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe"
"C:\Program Files\SlimService\SlimServiceFactory.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
dashost.exe {296c5405-024f-4a55-a31cd7665a7dbdb2}
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe"
"C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe" /service
"C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe"
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
taskeng.exe {672B4276-8926-48B6-85C9-95C9CE96298A}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
sihost.exe
"C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe" -noshow
igfxEM.exe
igfxHK.exe
C:\WINDOWS\Explorer.EXE
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\BatteryCare\BatteryCare.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Lenovo\Communications Utility\tpknrres.exe"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe"
"C:\Program Files (x86)\eM Client\MailClient.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="8360.0.997831795\89975466" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="8360.1.588873607\913524280" --font-cache-shared-handle=2256 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="8360.2.510350305\1246173794" --font-cache-shared-handle=2572 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="8360.3.1953151823\379723067" --font-cache-shared-handle=2584 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="8360.4.363712456\306806555" --font-cache-shared-handle=3180 /prefetch:673131151
"C:\Program Files (x86)\Java\jre1.8.0_73\bin\javaw.exe" -Xms32m -Xmx128m -jar "F:\Programs\Soubor manazery\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.jar"
"C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Download\Černí-andělé---Pokoj-bez-oken-2001,-CZ.mkv"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="8360.16.1883691180\439491062" --font-cache-shared-handle=6688 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="8360.19.551555580\1865494700" --font-cache-shared-handle=7612 /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1300877549-1184033115-3997360293-10018_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1300877549-1184033115-3997360293-10018 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\Martin\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job -
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job -
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job -
C:\WINDOWS\tasks\SlimCleaner Plus (Scheduled Scan - Martin).job -
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2012-07-20 373760]
"LnvMobHotspotClient"=C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [2014-08-12 937968]
"LMCSSTART1"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART2"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART3"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-01-01 3952800]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-12-04 16408320]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-04 1407104]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2016-01-01 561672]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-11-12 5565448]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAPower"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.inf - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.ini - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "%SystemRoot%\System32\WScript.exe" "%1" %*
.txt - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
======List of files/folders created in the last 1 month======
2016-02-28 20:26:04 ----D---- C:\rsit
2016-02-28 20:20:49 ----D---- C:\Program Files (x86)\Spyware Terminator
2016-02-23 22:01:38 ----D---- C:\ProgramData\TP-LINK
2016-02-18 23:49:00 ----A---- C:\WINDOWS\system32\drivers\avchv.sys
2016-02-18 23:38:40 ----D---- C:\WINDOWS\LastGood
2016-02-18 23:38:38 ----A---- C:\WINDOWS\system32\drivers\SET3E23.tmp
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avckf.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avc3.sys
2016-02-18 23:37:20 ----D---- C:\Program Files\Bitdefender
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\trufos.sys
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\gzflt.sys
2016-02-18 23:34:08 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2016-02-18 23:33:17 ----D---- C:\Users\Martin\AppData\Roaming\QuickScan
2016-02-13 10:10:21 ----D---- C:\Users\Martin\AppData\Roaming\QipGuard
2016-02-12 21:40:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:30 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-02-12 21:40:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-02-12 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-02-12 21:40:26 ----A---- C:\WINDOWS\system32\shell32.dll
2016-02-12 21:40:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-12 21:40:19 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-12 21:40:17 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\twinui.dll
2016-02-12 21:40:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-02-12 21:40:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\system32\InputService.dll
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-02-12 21:40:06 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-02-12 21:40:05 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-02-12 21:40:03 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\explorer.exe
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\services.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\invagent.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\devinv.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-09 20:04:10 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2016-02-05 09:50:28 ----D---- C:\WINDOWS\system32\DAX2
2016-02-05 09:49:28 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosade.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\sltech64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\slprp64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\slcnt64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2016-02-05 09:49:15 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-02-05 09:49:01 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2016-02-05 09:48:46 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-02-05 09:48:39 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64.dll
2016-02-05 09:48:33 ----A---- C:\WINDOWS\system32\CX64APO.dll
2016-02-05 09:48:32 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2016-02-05 09:48:28 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-02-05 09:46:08 ----A---- C:\WINDOWS\RtlExUpd.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2016-02-05 09:27:31 ----D---- C:\ProgramData\SlimWare Utilities, Inc
======List of files/folders modified in the last 1 month======
2016-02-28 20:26:07 ----D---- C:\Program Files\trend micro
2016-02-28 20:23:59 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2016-02-28 20:23:39 ----HD---- C:\ProgramData
2016-02-28 20:20:54 ----D---- C:\WINDOWS\Temp
2016-02-28 20:20:53 ----D---- C:\WINDOWS\system32\drivers
2016-02-28 20:20:49 ----RD---- C:\Program Files (x86)
2016-02-28 20:14:08 ----D---- C:\Download
2016-02-28 19:50:00 ----D---- C:\WINDOWS\system32\sru
2016-02-28 19:49:06 ----AD---- C:\WINDOWS\System32
2016-02-28 19:33:27 ----D---- C:\Users\Martin\AppData\Roaming\eM Client
2016-02-28 18:54:01 ----D---- C:\WINDOWS\system32\Tasks
2016-02-28 13:01:34 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2016-02-28 11:22:45 ----D---- C:\WINDOWS\system32\config
2016-02-28 11:19:11 ----D---- C:\WINDOWS\system32\DriverStore
2016-02-28 11:18:57 ----D---- C:\WINDOWS\Microsoft.NET
2016-02-24 10:23:23 ----D---- C:\WINDOWS\INF
2016-02-23 22:05:30 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-23 22:05:21 ----D---- C:\Temp
2016-02-23 22:05:11 ----SHD---- C:\System Volume Information
2016-02-22 21:52:53 ----D---- C:\Users\Martin\AppData\Roaming\dvdcss
2016-02-18 23:41:12 ----D---- C:\WINDOWS\Prefetch
2016-02-18 23:38:40 ----D---- C:\Windows
2016-02-18 23:37:20 ----RD---- C:\Program Files
2016-02-18 23:35:24 ----D---- C:\ProgramData\AVAST Software
2016-02-18 23:35:24 ----D---- C:\Program Files\AVAST Software
2016-02-18 23:34:08 ----D---- C:\WINDOWS\SysWOW64
2016-02-15 11:36:41 ----D---- C:\Users\Martin\AppData\Roaming\BatteryCare
2016-02-14 22:21:59 ----D---- C:\WINDOWS\rescache
2016-02-14 22:04:51 ----RSD---- C:\WINDOWS\assembly
2016-02-14 15:07:12 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 15:07:12 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-02-13 22:47:23 ----D---- C:\WINDOWS\AppReadiness
2016-02-13 19:20:31 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-13 17:59:30 ----D---- C:\Users\Martin\AppData\Roaming\AIMP3
2016-02-13 16:49:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-13 11:49:20 ----D---- C:\Vypaleni
2016-02-13 10:10:22 ----D---- C:\Program Files (x86)\QIP Infium
2016-02-13 10:05:19 ----SHD---- C:\WINDOWS\Installer
2016-02-13 10:05:18 ----D---- C:\ProgramData\Skype
2016-02-13 09:01:06 ----D---- C:\WINDOWS\Tasks
2016-02-12 22:07:00 ----HD---- C:\Program Files\WindowsApps
2016-02-12 22:05:17 ----D---- C:\WINDOWS\WinSxS
2016-02-12 21:50:29 ----SD---- C:\WINDOWS\system32\F12
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\oobe
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\PurchaseDialog
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-12 21:50:28 ----D---- C:\WINDOWS\system32\appraiser
2016-02-12 21:50:28 ----D---- C:\WINDOWS\bcastdvr
2016-02-12 21:50:28 ----D---- C:\WINDOWS\AppPatch
2016-02-12 21:50:28 ----D---- C:\Program Files\Windows Journal
2016-02-12 21:48:21 ----D---- C:\WINDOWS\CbsTemp
2016-02-12 21:47:26 ----D---- C:\WINDOWS\system32\MRT
2016-02-12 21:41:32 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-12 21:37:44 ----D---- C:\WINDOWS\system32\catroot2
2016-02-12 21:33:36 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-09 20:04:29 ----D---- C:\Program Files (x86)\Common Files
2016-02-09 20:03:30 ----D---- C:\Program Files (x86)\Java
2016-02-08 22:45:09 ----D---- C:\WINDOWS\debug
2016-02-08 20:56:20 ----D---- C:\WINDOWS\system32\NDF
2016-02-05 09:50:55 ----HD---- C:\Program Files (x86)\Temp
2016-02-05 09:50:11 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-02-05 09:33:14 ----D---- C:\Program Files (x86)\Realtek
2016-02-05 09:32:30 ----D---- C:\DRIVERS
2016-02-03 20:01:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-11-19 652344]
R0 trufos;trufos; C:\WINDOWS\system32\DRIVERS\trufos.sys [2013-05-28 382536]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 TPPWRIF;TPPWRIF; C:\WINDOWS\System32\drivers\Tppwr64v.sys [2015-01-16 20736]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AmUStor;@oem27.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2012-07-20 100992]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2016-01-01 173312]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 84992]
R3 gzflt;gzflt; C:\WINDOWS\system32\DRIVERS\gzflt.sys [2013-04-22 148696]
R3 Hamachi;@oem1.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-11-12 45680]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2016-01-01 72400]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-01-01 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-12-04 4694784]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem25.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 LnvHIDHW;@oem0.inf,%LnvHIDHW%;Lenovo HID Mini-driver for Hardware Radio Switch; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [2014-04-07 29496]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 rt640x64;@oem14.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-01-01 44192]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-01-01 630944]
S0 avc3;avc3; C:\WINDOWS\system32\DRIVERS\avc3.sys [2013-04-17 718840]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [2013-07-02 121928]
S3 aswTap;@oem12.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2014-09-05 44640]
S3 avckf;avckf; C:\WINDOWS\system32\DRIVERS\avckf.sys [2013-04-17 593144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 953856]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2016-01-01 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-01 117248]
S3 Fastboot;Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [2014-02-22 66288]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RtlWlanu;@netrtwlanu.inf,%RtlWlanu.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter; C:\WINDOWS\System32\drivers\rtwlanu.sys [2015-10-30 3764736]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVControlCenter;AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [2015-01-21 560584]
R2 BcmBtRSupport;@oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2016-01-01 2251992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2014-02-22 140016]
R2 gzserv;Bitdefender Antivirus Free Edition; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [2013-10-23 69368]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-11-12 2546184]
R2 IBMPMSVC;@oem31.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2016-01-01 131312]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-01-01 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-03-12 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
R2 Lenovo Settings Service;Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2015-01-23 2016472]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-11-12 417552]
R2 LnvHotSpotSvc;LnvMHService; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [2014-08-12 474608]
R2 LocationTaskManager;LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [2015-01-09 469720]
R2 OneSyncSvc_2e5629d;Hostitel synchronizace_2e5629d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SlimService;SlimWare Utility Service Launcher; C:\Program Files\SlimService\SlimServiceFactory.exe [2015-12-15 245016]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-01-01 247968]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-01-01 291744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 LENOVO.TVTVCAM;Lenovo AVFramework Virtual Camera Controller Service; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2015-01-21 626120]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_2e5629d;Data kontaktů_2e5629d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 Power Manager DBC Service;Lenovo Settings Power Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2015-01-16 1668848]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2e2476;Hostitel synchronizace_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7b746e;Hostitel synchronizace_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_815aeb;Hostitel synchronizace_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d6bf7;Hostitel synchronizace_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25 178312]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2015-12-10 272864]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2e2476;Služba zasílání zpráv_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2e5629d;Služba zasílání zpráv_2e5629d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7b746e;Služba zasílání zpráv_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_815aeb;Služba zasílání zpráv_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d6bf7;Služba zasílání zpráv_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-12 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2e2476;Data kontaktů_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7b746e;Data kontaktů_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_815aeb;Data kontaktů_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d6bf7;Data kontaktů_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2016-01-13 21536]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 LENOVO.CAMMUTE;Lenovo AVFramework Camera Privacy Controller; C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2015-01-21 456136]
S4 LENOVO.TPKNRSVC;Lenovo AVFramework Microphone Volume Controller and Dolby Interface; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2015-01-21 453576]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
RSIT log - prosím o preventivku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: RSIT log - prosím o preventivku
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: RSIT log - prosím o preventivku
# AdwCleaner v5.037 - Logfile created 01/03/2016 at 06:44:22
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Local]
# Operating system : Windows 10 Home (x64)
# Username : Martin - MARTINRASZKA
# Running from : C:\Users\Martin\Desktop\adwcleaner_5.037.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files\slimcleaner plus
[-] Folder Deleted : C:\Program Files\slimservice
[-] Folder Deleted : C:\ProgramData\slimware utilities inc
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\slimcleaner plus
[-] Folder Deleted : C:\Users\Martin\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall
***** [ Files ] *****
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chphlpgkkbolifaimnlloiipkdnihall_0.localstorage
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chphlpgkkbolifaimnlloiipkdnihall_0.localstorage-journal
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\dobreprogramy
[-] Key Deleted : HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : [x64] HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
***** [ Web browsers ] *****
[-] [C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chphlpgkkbolifaimnlloiipkdnihall
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1970 bytes] - [01/03/2016 06:44:22]
C:\AdwCleaner\AdwCleaner[S1].txt - [1947 bytes] - [01/03/2016 06:42:37]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2116 bytes] ##########
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Local]
# Operating system : Windows 10 Home (x64)
# Username : Martin - MARTINRASZKA
# Running from : C:\Users\Martin\Desktop\adwcleaner_5.037.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files\slimcleaner plus
[-] Folder Deleted : C:\Program Files\slimservice
[-] Folder Deleted : C:\ProgramData\slimware utilities inc
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\slimcleaner plus
[-] Folder Deleted : C:\Users\Martin\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall
***** [ Files ] *****
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chphlpgkkbolifaimnlloiipkdnihall_0.localstorage
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chphlpgkkbolifaimnlloiipkdnihall_0.localstorage-journal
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\dobreprogramy
[-] Key Deleted : HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : [x64] HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
***** [ Web browsers ] *****
[-] [C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chphlpgkkbolifaimnlloiipkdnihall
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1970 bytes] - [01/03/2016 06:44:22]
C:\AdwCleaner\AdwCleaner[S1].txt - [1947 bytes] - [01/03/2016 06:42:37]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2116 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: RSIT log - prosím o preventivku
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: RSIT log - prosím o preventivku
Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2016-03-01 20:34:48
Microsoft Windows 10 Home
System drive C: has 46 GB (20%) free of 231 GB
Total RAM: 3982 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:34:50, on 1. 3. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Lenovo\iMController\AutoUpdate.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\eM Client\MailClient.exe
C:\Program Files\Lenovo\iMController\LegacyFeatures.exe
C:\Program Files (x86)\Java\jre1.8.0_73\bin\javaw.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Lenovo\iMController\PluginCommunication.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{77a2dced-c301-442e-bef8-8021202dffe3}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: @oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Bitdefender Antivirus Free Edition (gzserv) - Bitdefender - C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @oem31.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LnvMHService (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
O23 - Service: LocationTaskManager - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: LSCWinService - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SlimWare Utility Service Launcher (SlimService) - Unknown owner - C:\Program Files\SlimService\SlimServiceFactory.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10663 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe" /service
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7ccedbc2-49fa-4de9-87e5-561317185ae5 -SystemEventPortName:HostProcess-1f6269dc-a6b4-498a-99e7-cfa6a11ea314 -IoCancelEventPortName:HostProcess-c5f32074-b2fc-4988-b5ee-b75d432529e4 -NonStateChangingEventPortName:HostProcess-883c1455-7963-4b41-9c71-ffc6f60e8a22 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8cab4e22-3940-45fc-ab08-4d559b13ff1d -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\ibmpmsvc.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d532ea8a-3a66-4134-93df-7d2f934d42dc -SystemEventPortName:HostProcess-491ee6ce-57a3-4118-a424-d02701ea118f -IoCancelEventPortName:HostProcess-6823047a-f6e3-4fdf-ad6c-6a636feea7a3 -NonStateChangingEventPortName:HostProcess-f8b54d8c-b1d0-42be-82d4-507750180ba3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ed3ed6a7-5d91-4acd-8f67-25bb3b2c6711 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c33a2d82-6bb6-4a97-aa9c-0199c1aa5411 -SystemEventPortName:HostProcess-6e16d020-a4b2-4ddf-bf92-f3293bfdb9c8 -IoCancelEventPortName:HostProcess-39dbf9b4-3862-4b9a-9dba-6d711c852b9d -NonStateChangingEventPortName:HostProcess-b0d6d1a1-8ac6-46e7-abcf-634698ced75a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2214741e-63a7-486c-bcb4-2c7a2748d9b6 -DeviceGroupId:
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\System32\spoolsv.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f11d3817-9d73-4600-8c00-182fe58312c1 -SystemEventPortName:HostProcess-ca1a7864-2626-4f29-854b-6ae298e0fe72 -IoCancelEventPortName:HostProcess-86ba3c69-122b-414b-ac04-10989bb137dd -NonStateChangingEventPortName:HostProcess-485e4530-dd88-402e-b1a4-9981e69b55d7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:fe6983db-9813-435d-bcf9-4cd6b656e43e -DeviceGroupId:
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
dashost.exe {a9f92912-b463-4119-a5f3d94a9b79d6c5}
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe"
"C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe" -noshow
sihost.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
igfxEM.exe
igfxHK.exe
C:\WINDOWS\Explorer.EXE
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\BatteryCare\BatteryCare.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4384.0.65838803\773435188" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.1.2094835559\1801918971" --font-cache-shared-handle=2240 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.2.1380134941\1019718083" --font-cache-shared-handle=2412 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.3.1822346548\1896544582" --font-cache-shared-handle=3020 /prefetch:673131151
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Lenovo\Communications Utility\tpknrres.exe"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"fontdrvhost.exe"
C:\WINDOWS\system32\msiexec.exe /V
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files\Lenovo\iMController\AutoUpdate.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.5.911988652\2009769173" --font-cache-shared-handle=5584 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.6.1609609191\945810240" --font-cache-shared-handle=6008 /prefetch:673131151
"C:\Program Files (x86)\eM Client\MailClient.exe"
"C:\Program Files\Lenovo\iMController\LegacyFeatures.exe" run
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Bitdefender\Antivirus Free Edition\update.exe" GzUpdateShared_1a2d
"C:\Program Files (x86)\Java\jre1.8.0_73\bin\javaw.exe" -Xms32m -Xmx128m -jar "F:\Programs\Soubor manazery\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.jar"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.9.135454789\495723081" --font-cache-shared-handle=4256 /prefetch:673131151
"C:\Program Files\Lenovo\iMController\PluginCommunication.exe" "Lenovo.Plugins.AppTagProvider_007" "E046963F.LenovoCompanion_k1h2ywk1493x8" "lenovo-metro-support" "C:\Users\Martin\AppData\Local\Packages\E046963F.LenovoCompanion_k1h2ywk1493x8\LocalState" "Lenovo.Plugins.AppTagProvider.dll"
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Martin\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SlimCleaner Plus (Scheduled Scan - Martin).job - C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe /doScheduledScan
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2012-07-20 373760]
"LnvMobHotspotClient"=C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [2014-08-12 937968]
"LMCSSTART1"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART2"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART3"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-01-01 3952800]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-12-04 16408320]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-04 1407104]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2016-01-01 561672]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-11-12 5565448]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAPower"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.inf - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.ini - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "%SystemRoot%\System32\WScript.exe" "%1" %*
.txt - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
======List of files/folders created in the last 1 month======
2016-03-01 06:42:29 ----D---- C:\AdwCleaner
2016-02-28 20:26:04 ----D---- C:\rsit
2016-02-28 20:20:49 ----D---- C:\Program Files (x86)\Spyware Terminator
2016-02-23 22:01:38 ----D---- C:\ProgramData\TP-LINK
2016-02-18 23:38:40 ----D---- C:\WINDOWS\LastGood.Tmp
2016-02-18 23:38:38 ----A---- C:\WINDOWS\system32\drivers\avchv.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avckf.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avc3.sys
2016-02-18 23:37:20 ----D---- C:\Program Files\Bitdefender
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\trufos.sys
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\gzflt.sys
2016-02-18 23:34:08 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2016-02-18 23:33:17 ----D---- C:\Users\Martin\AppData\Roaming\QuickScan
2016-02-13 10:10:21 ----D---- C:\Users\Martin\AppData\Roaming\QipGuard
2016-02-12 21:40:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:30 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-02-12 21:40:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-02-12 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-02-12 21:40:26 ----A---- C:\WINDOWS\system32\shell32.dll
2016-02-12 21:40:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-12 21:40:19 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-12 21:40:17 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\twinui.dll
2016-02-12 21:40:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-02-12 21:40:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\system32\InputService.dll
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-02-12 21:40:06 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-02-12 21:40:05 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-02-12 21:40:03 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\explorer.exe
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\services.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\invagent.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\devinv.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-09 20:04:10 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2016-02-05 09:50:28 ----D---- C:\WINDOWS\system32\DAX2
2016-02-05 09:49:28 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosade.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\sltech64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\slprp64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\slcnt64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2016-02-05 09:49:15 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-02-05 09:49:01 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2016-02-05 09:48:46 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-02-05 09:48:39 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64.dll
2016-02-05 09:48:33 ----A---- C:\WINDOWS\system32\CX64APO.dll
2016-02-05 09:48:32 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2016-02-05 09:48:28 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-02-05 09:46:08 ----A---- C:\WINDOWS\RtlExUpd.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2016-02-05 09:27:31 ----D---- C:\ProgramData\SlimWare Utilities, Inc
======List of files/folders modified in the last 1 month======
2016-03-01 20:34:49 ----D---- C:\Program Files\trend micro
2016-03-01 20:33:21 ----D---- C:\Download
2016-03-01 20:32:02 ----AD---- C:\WINDOWS\System32
2016-03-01 20:31:25 ----D---- C:\Users\Martin\AppData\Roaming\eM Client
2016-03-01 20:31:20 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:31:20 ----D---- C:\WINDOWS\Temp
2016-03-01 20:31:19 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-01 20:31:16 ----AD---- C:\Program Files (x86)\eM Client
2016-03-01 20:30:49 ----SHD---- C:\System Volume Information
2016-03-01 20:28:41 ----D---- C:\WINDOWS\Prefetch
2016-03-01 20:27:07 ----D---- C:\WINDOWS\system32\sru
2016-03-01 06:44:22 ----RD---- C:\Program Files
2016-03-01 06:44:22 ----HD---- C:\ProgramData
2016-02-29 20:57:13 ----D---- C:\WINDOWS\system32\Tasks
2016-02-29 10:22:53 ----D---- C:\WINDOWS\system32\config
2016-02-29 09:25:33 ----D---- C:\WINDOWS\system32\DriverStore
2016-02-29 01:13:59 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2016-02-28 21:50:29 ----D---- C:\WINDOWS\system32\drivers
2016-02-28 21:50:21 ----D---- C:\Windows
2016-02-28 20:30:11 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2016-02-28 20:20:49 ----RD---- C:\Program Files (x86)
2016-02-24 10:23:23 ----D---- C:\WINDOWS\INF
2016-02-23 22:05:30 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-23 22:05:21 ----D---- C:\Temp
2016-02-22 21:52:53 ----D---- C:\Users\Martin\AppData\Roaming\dvdcss
2016-02-18 23:35:24 ----D---- C:\ProgramData\AVAST Software
2016-02-18 23:35:24 ----D---- C:\Program Files\AVAST Software
2016-02-18 23:34:08 ----D---- C:\WINDOWS\SysWOW64
2016-02-15 11:36:41 ----D---- C:\Users\Martin\AppData\Roaming\BatteryCare
2016-02-14 22:21:59 ----D---- C:\WINDOWS\rescache
2016-02-14 22:04:51 ----RSD---- C:\WINDOWS\assembly
2016-02-14 15:07:12 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 15:07:12 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-02-13 22:47:23 ----D---- C:\WINDOWS\AppReadiness
2016-02-13 19:20:31 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-13 17:59:30 ----D---- C:\Users\Martin\AppData\Roaming\AIMP3
2016-02-13 16:49:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-13 11:49:20 ----D---- C:\Vypaleni
2016-02-13 10:10:22 ----D---- C:\Program Files (x86)\QIP Infium
2016-02-13 10:05:18 ----D---- C:\ProgramData\Skype
2016-02-13 09:01:06 ----D---- C:\WINDOWS\Tasks
2016-02-12 22:07:00 ----HD---- C:\Program Files\WindowsApps
2016-02-12 22:05:17 ----D---- C:\WINDOWS\WinSxS
2016-02-12 21:50:29 ----SD---- C:\WINDOWS\system32\F12
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\oobe
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\PurchaseDialog
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-12 21:50:28 ----D---- C:\WINDOWS\system32\appraiser
2016-02-12 21:50:28 ----D---- C:\WINDOWS\bcastdvr
2016-02-12 21:50:28 ----D---- C:\WINDOWS\AppPatch
2016-02-12 21:50:28 ----D---- C:\Program Files\Windows Journal
2016-02-12 21:48:21 ----D---- C:\WINDOWS\CbsTemp
2016-02-12 21:47:26 ----D---- C:\WINDOWS\system32\MRT
2016-02-12 21:41:32 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-12 21:37:44 ----D---- C:\WINDOWS\system32\catroot2
2016-02-12 21:33:36 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-09 20:04:29 ----D---- C:\Program Files (x86)\Common Files
2016-02-09 20:03:30 ----D---- C:\Program Files (x86)\Java
2016-02-08 22:45:09 ----D---- C:\WINDOWS\debug
2016-02-08 20:56:20 ----D---- C:\WINDOWS\system32\NDF
2016-02-05 09:50:55 ----HD---- C:\Program Files (x86)\Temp
2016-02-05 09:50:11 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-02-05 09:33:14 ----D---- C:\Program Files (x86)\Realtek
2016-02-05 09:32:30 ----D---- C:\DRIVERS
2016-02-03 20:01:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avc3;avc3; C:\WINDOWS\system32\DRIVERS\avc3.sys [2013-04-17 718840]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-11-19 652344]
R0 trufos;trufos; C:\WINDOWS\system32\DRIVERS\trufos.sys [2013-05-28 382536]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 gzflt;gzflt; C:\WINDOWS\system32\DRIVERS\gzflt.sys [2013-04-22 148696]
R1 TPPWRIF;TPPWRIF; C:\WINDOWS\System32\drivers\Tppwr64v.sys [2015-01-16 20736]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AmUStor;@oem27.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2012-07-20 100992]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2016-01-01 173312]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 84992]
R3 Hamachi;@oem1.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-11-12 45680]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2016-01-01 72400]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-01-01 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-12-04 4694784]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem25.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 LnvHIDHW;@oem0.inf,%LnvHIDHW%;Lenovo HID Mini-driver for Hardware Radio Switch; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [2014-04-07 29496]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 rt640x64;@oem14.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-01-01 44192]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-01-01 630944]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [2013-07-02 121928]
S3 aswTap;@oem12.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2014-09-05 44640]
S3 avckf;avckf; C:\WINDOWS\system32\DRIVERS\avckf.sys [2013-04-17 593144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 953856]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2016-01-01 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-01 117248]
S3 Fastboot;Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [2014-02-22 66288]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RtlWlanu;@netrtwlanu.inf,%RtlWlanu.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter; C:\WINDOWS\System32\drivers\rtwlanu.sys [2015-10-30 3764736]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVControlCenter;AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [2015-01-21 560584]
R2 BcmBtRSupport;@oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2016-01-01 2251992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2014-02-22 140016]
R2 gzserv;Bitdefender Antivirus Free Edition; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [2013-10-23 69368]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-11-12 2546184]
R2 IBMPMSVC;@oem31.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2016-01-01 131312]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-01-01 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-03-12 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
R2 Lenovo Settings Service;Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2015-01-23 2016472]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-11-12 417552]
R2 LnvHotSpotSvc;LnvMHService; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [2014-08-12 474608]
R2 LocationTaskManager;LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [2015-01-09 469720]
R2 OneSyncSvc_cde2e;Hostitel synchronizace_cde2e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-01-01 247968]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-01-01 291744]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 PimIndexMaintenanceSvc_cde2e;Data kontaktů_cde2e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 Power Manager DBC Service;Lenovo Settings Power Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2015-01-16 1668848]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2e2476;Hostitel synchronizace_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7b746e;Hostitel synchronizace_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_815aeb;Hostitel synchronizace_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d6bf7;Hostitel synchronizace_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SlimService;SlimWare Utility Service Launcher; C:\Program Files\SlimService\SlimServiceFactory.exe []
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25 178312]
S3 LENOVO.TVTVCAM;Lenovo AVFramework Virtual Camera Controller Service; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2015-01-21 626120]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2015-12-10 272864]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2e2476;Služba zasílání zpráv_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7b746e;Služba zasílání zpráv_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_815aeb;Služba zasílání zpráv_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_cde2e;Služba zasílání zpráv_cde2e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d6bf7;Služba zasílání zpráv_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-12 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2e2476;Data kontaktů_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7b746e;Data kontaktů_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_815aeb;Data kontaktů_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d6bf7;Data kontaktů_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2016-01-13 21536]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 LENOVO.CAMMUTE;Lenovo AVFramework Camera Privacy Controller; C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2015-01-21 456136]
S4 LENOVO.TPKNRSVC;Lenovo AVFramework Microphone Volume Controller and Dolby Interface; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2015-01-21 453576]
-----------------EOF-----------------
Run by Martin at 2016-03-01 20:34:48
Microsoft Windows 10 Home
System drive C: has 46 GB (20%) free of 231 GB
Total RAM: 3982 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:34:50, on 1. 3. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Lenovo\iMController\AutoUpdate.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\eM Client\MailClient.exe
C:\Program Files\Lenovo\iMController\LegacyFeatures.exe
C:\Program Files (x86)\Java\jre1.8.0_73\bin\javaw.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Lenovo\iMController\PluginCommunication.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{77a2dced-c301-442e-bef8-8021202dffe3}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: @oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Bitdefender Antivirus Free Edition (gzserv) - Bitdefender - C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @oem31.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LnvMHService (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
O23 - Service: LocationTaskManager - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: LSCWinService - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SlimWare Utility Service Launcher (SlimService) - Unknown owner - C:\Program Files\SlimService\SlimServiceFactory.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10663 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe" /service
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7ccedbc2-49fa-4de9-87e5-561317185ae5 -SystemEventPortName:HostProcess-1f6269dc-a6b4-498a-99e7-cfa6a11ea314 -IoCancelEventPortName:HostProcess-c5f32074-b2fc-4988-b5ee-b75d432529e4 -NonStateChangingEventPortName:HostProcess-883c1455-7963-4b41-9c71-ffc6f60e8a22 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8cab4e22-3940-45fc-ab08-4d559b13ff1d -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\ibmpmsvc.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d532ea8a-3a66-4134-93df-7d2f934d42dc -SystemEventPortName:HostProcess-491ee6ce-57a3-4118-a424-d02701ea118f -IoCancelEventPortName:HostProcess-6823047a-f6e3-4fdf-ad6c-6a636feea7a3 -NonStateChangingEventPortName:HostProcess-f8b54d8c-b1d0-42be-82d4-507750180ba3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ed3ed6a7-5d91-4acd-8f67-25bb3b2c6711 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c33a2d82-6bb6-4a97-aa9c-0199c1aa5411 -SystemEventPortName:HostProcess-6e16d020-a4b2-4ddf-bf92-f3293bfdb9c8 -IoCancelEventPortName:HostProcess-39dbf9b4-3862-4b9a-9dba-6d711c852b9d -NonStateChangingEventPortName:HostProcess-b0d6d1a1-8ac6-46e7-abcf-634698ced75a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2214741e-63a7-486c-bcb4-2c7a2748d9b6 -DeviceGroupId:
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\System32\spoolsv.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f11d3817-9d73-4600-8c00-182fe58312c1 -SystemEventPortName:HostProcess-ca1a7864-2626-4f29-854b-6ae298e0fe72 -IoCancelEventPortName:HostProcess-86ba3c69-122b-414b-ac04-10989bb137dd -NonStateChangingEventPortName:HostProcess-485e4530-dd88-402e-b1a4-9981e69b55d7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:fe6983db-9813-435d-bcf9-4cd6b656e43e -DeviceGroupId:
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
dashost.exe {a9f92912-b463-4119-a5f3d94a9b79d6c5}
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe"
"C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe" -noshow
sihost.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
igfxEM.exe
igfxHK.exe
C:\WINDOWS\Explorer.EXE
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\BatteryCare\BatteryCare.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4384.0.65838803\773435188" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.1.2094835559\1801918971" --font-cache-shared-handle=2240 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.2.1380134941\1019718083" --font-cache-shared-handle=2412 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.3.1822346548\1896544582" --font-cache-shared-handle=3020 /prefetch:673131151
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Lenovo\Communications Utility\tpknrres.exe"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"fontdrvhost.exe"
C:\WINDOWS\system32\msiexec.exe /V
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files\Lenovo\iMController\AutoUpdate.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.5.911988652\2009769173" --font-cache-shared-handle=5584 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.6.1609609191\945810240" --font-cache-shared-handle=6008 /prefetch:673131151
"C:\Program Files (x86)\eM Client\MailClient.exe"
"C:\Program Files\Lenovo\iMController\LegacyFeatures.exe" run
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Bitdefender\Antivirus Free Edition\update.exe" GzUpdateShared_1a2d
"C:\Program Files (x86)\Java\jre1.8.0_73\bin\javaw.exe" -Xms32m -Xmx128m -jar "F:\Programs\Soubor manazery\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.jar"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledAutoTuneReceiveWindow/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4384.9.135454789\495723081" --font-cache-shared-handle=4256 /prefetch:673131151
"C:\Program Files\Lenovo\iMController\PluginCommunication.exe" "Lenovo.Plugins.AppTagProvider_007" "E046963F.LenovoCompanion_k1h2ywk1493x8" "lenovo-metro-support" "C:\Users\Martin\AppData\Local\Packages\E046963F.LenovoCompanion_k1h2ywk1493x8\LocalState" "Lenovo.Plugins.AppTagProvider.dll"
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Martin\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SlimCleaner Plus (Scheduled Scan - Martin).job - C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe /doScheduledScan
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2012-07-20 373760]
"LnvMobHotspotClient"=C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [2014-08-12 937968]
"LMCSSTART1"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART2"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART3"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-01-01 3952800]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-12-04 16408320]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-04 1407104]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2016-01-01 561672]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-11-12 5565448]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAPower"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.inf - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.ini - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "%SystemRoot%\System32\WScript.exe" "%1" %*
.txt - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
======List of files/folders created in the last 1 month======
2016-03-01 06:42:29 ----D---- C:\AdwCleaner
2016-02-28 20:26:04 ----D---- C:\rsit
2016-02-28 20:20:49 ----D---- C:\Program Files (x86)\Spyware Terminator
2016-02-23 22:01:38 ----D---- C:\ProgramData\TP-LINK
2016-02-18 23:38:40 ----D---- C:\WINDOWS\LastGood.Tmp
2016-02-18 23:38:38 ----A---- C:\WINDOWS\system32\drivers\avchv.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avckf.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avc3.sys
2016-02-18 23:37:20 ----D---- C:\Program Files\Bitdefender
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\trufos.sys
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\gzflt.sys
2016-02-18 23:34:08 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2016-02-18 23:33:17 ----D---- C:\Users\Martin\AppData\Roaming\QuickScan
2016-02-13 10:10:21 ----D---- C:\Users\Martin\AppData\Roaming\QipGuard
2016-02-12 21:40:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:30 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-02-12 21:40:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-02-12 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-02-12 21:40:26 ----A---- C:\WINDOWS\system32\shell32.dll
2016-02-12 21:40:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-12 21:40:19 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-12 21:40:17 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\twinui.dll
2016-02-12 21:40:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-02-12 21:40:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\system32\InputService.dll
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-02-12 21:40:06 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-02-12 21:40:05 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-02-12 21:40:03 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\explorer.exe
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\services.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\invagent.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\devinv.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-09 20:04:10 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2016-02-05 09:50:28 ----D---- C:\WINDOWS\system32\DAX2
2016-02-05 09:49:28 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosade.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\sltech64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\slprp64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\slcnt64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2016-02-05 09:49:15 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-02-05 09:49:01 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2016-02-05 09:48:46 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-02-05 09:48:39 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64.dll
2016-02-05 09:48:33 ----A---- C:\WINDOWS\system32\CX64APO.dll
2016-02-05 09:48:32 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2016-02-05 09:48:28 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-02-05 09:46:08 ----A---- C:\WINDOWS\RtlExUpd.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2016-02-05 09:27:31 ----D---- C:\ProgramData\SlimWare Utilities, Inc
======List of files/folders modified in the last 1 month======
2016-03-01 20:34:49 ----D---- C:\Program Files\trend micro
2016-03-01 20:33:21 ----D---- C:\Download
2016-03-01 20:32:02 ----AD---- C:\WINDOWS\System32
2016-03-01 20:31:25 ----D---- C:\Users\Martin\AppData\Roaming\eM Client
2016-03-01 20:31:20 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:31:20 ----D---- C:\WINDOWS\Temp
2016-03-01 20:31:19 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-01 20:31:16 ----AD---- C:\Program Files (x86)\eM Client
2016-03-01 20:30:49 ----SHD---- C:\System Volume Information
2016-03-01 20:28:41 ----D---- C:\WINDOWS\Prefetch
2016-03-01 20:27:07 ----D---- C:\WINDOWS\system32\sru
2016-03-01 06:44:22 ----RD---- C:\Program Files
2016-03-01 06:44:22 ----HD---- C:\ProgramData
2016-02-29 20:57:13 ----D---- C:\WINDOWS\system32\Tasks
2016-02-29 10:22:53 ----D---- C:\WINDOWS\system32\config
2016-02-29 09:25:33 ----D---- C:\WINDOWS\system32\DriverStore
2016-02-29 01:13:59 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2016-02-28 21:50:29 ----D---- C:\WINDOWS\system32\drivers
2016-02-28 21:50:21 ----D---- C:\Windows
2016-02-28 20:30:11 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2016-02-28 20:20:49 ----RD---- C:\Program Files (x86)
2016-02-24 10:23:23 ----D---- C:\WINDOWS\INF
2016-02-23 22:05:30 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-23 22:05:21 ----D---- C:\Temp
2016-02-22 21:52:53 ----D---- C:\Users\Martin\AppData\Roaming\dvdcss
2016-02-18 23:35:24 ----D---- C:\ProgramData\AVAST Software
2016-02-18 23:35:24 ----D---- C:\Program Files\AVAST Software
2016-02-18 23:34:08 ----D---- C:\WINDOWS\SysWOW64
2016-02-15 11:36:41 ----D---- C:\Users\Martin\AppData\Roaming\BatteryCare
2016-02-14 22:21:59 ----D---- C:\WINDOWS\rescache
2016-02-14 22:04:51 ----RSD---- C:\WINDOWS\assembly
2016-02-14 15:07:12 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 15:07:12 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-02-13 22:47:23 ----D---- C:\WINDOWS\AppReadiness
2016-02-13 19:20:31 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-13 17:59:30 ----D---- C:\Users\Martin\AppData\Roaming\AIMP3
2016-02-13 16:49:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-13 11:49:20 ----D---- C:\Vypaleni
2016-02-13 10:10:22 ----D---- C:\Program Files (x86)\QIP Infium
2016-02-13 10:05:18 ----D---- C:\ProgramData\Skype
2016-02-13 09:01:06 ----D---- C:\WINDOWS\Tasks
2016-02-12 22:07:00 ----HD---- C:\Program Files\WindowsApps
2016-02-12 22:05:17 ----D---- C:\WINDOWS\WinSxS
2016-02-12 21:50:29 ----SD---- C:\WINDOWS\system32\F12
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\oobe
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\PurchaseDialog
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-12 21:50:28 ----D---- C:\WINDOWS\system32\appraiser
2016-02-12 21:50:28 ----D---- C:\WINDOWS\bcastdvr
2016-02-12 21:50:28 ----D---- C:\WINDOWS\AppPatch
2016-02-12 21:50:28 ----D---- C:\Program Files\Windows Journal
2016-02-12 21:48:21 ----D---- C:\WINDOWS\CbsTemp
2016-02-12 21:47:26 ----D---- C:\WINDOWS\system32\MRT
2016-02-12 21:41:32 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-12 21:37:44 ----D---- C:\WINDOWS\system32\catroot2
2016-02-12 21:33:36 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-09 20:04:29 ----D---- C:\Program Files (x86)\Common Files
2016-02-09 20:03:30 ----D---- C:\Program Files (x86)\Java
2016-02-08 22:45:09 ----D---- C:\WINDOWS\debug
2016-02-08 20:56:20 ----D---- C:\WINDOWS\system32\NDF
2016-02-05 09:50:55 ----HD---- C:\Program Files (x86)\Temp
2016-02-05 09:50:11 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-02-05 09:33:14 ----D---- C:\Program Files (x86)\Realtek
2016-02-05 09:32:30 ----D---- C:\DRIVERS
2016-02-03 20:01:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avc3;avc3; C:\WINDOWS\system32\DRIVERS\avc3.sys [2013-04-17 718840]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-11-19 652344]
R0 trufos;trufos; C:\WINDOWS\system32\DRIVERS\trufos.sys [2013-05-28 382536]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 gzflt;gzflt; C:\WINDOWS\system32\DRIVERS\gzflt.sys [2013-04-22 148696]
R1 TPPWRIF;TPPWRIF; C:\WINDOWS\System32\drivers\Tppwr64v.sys [2015-01-16 20736]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AmUStor;@oem27.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2012-07-20 100992]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2016-01-01 173312]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 84992]
R3 Hamachi;@oem1.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-11-12 45680]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2016-01-01 72400]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-01-01 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-12-04 4694784]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem25.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 LnvHIDHW;@oem0.inf,%LnvHIDHW%;Lenovo HID Mini-driver for Hardware Radio Switch; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [2014-04-07 29496]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 rt640x64;@oem14.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-01-01 44192]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-01-01 630944]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [2013-07-02 121928]
S3 aswTap;@oem12.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2014-09-05 44640]
S3 avckf;avckf; C:\WINDOWS\system32\DRIVERS\avckf.sys [2013-04-17 593144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 953856]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2016-01-01 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-01 117248]
S3 Fastboot;Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [2014-02-22 66288]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RtlWlanu;@netrtwlanu.inf,%RtlWlanu.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter; C:\WINDOWS\System32\drivers\rtwlanu.sys [2015-10-30 3764736]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVControlCenter;AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [2015-01-21 560584]
R2 BcmBtRSupport;@oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2016-01-01 2251992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2014-02-22 140016]
R2 gzserv;Bitdefender Antivirus Free Edition; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [2013-10-23 69368]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-11-12 2546184]
R2 IBMPMSVC;@oem31.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2016-01-01 131312]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-01-01 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-03-12 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
R2 Lenovo Settings Service;Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2015-01-23 2016472]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-11-12 417552]
R2 LnvHotSpotSvc;LnvMHService; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [2014-08-12 474608]
R2 LocationTaskManager;LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [2015-01-09 469720]
R2 OneSyncSvc_cde2e;Hostitel synchronizace_cde2e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-01-01 247968]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-01-01 291744]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 PimIndexMaintenanceSvc_cde2e;Data kontaktů_cde2e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 Power Manager DBC Service;Lenovo Settings Power Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2015-01-16 1668848]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2e2476;Hostitel synchronizace_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7b746e;Hostitel synchronizace_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_815aeb;Hostitel synchronizace_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d6bf7;Hostitel synchronizace_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SlimService;SlimWare Utility Service Launcher; C:\Program Files\SlimService\SlimServiceFactory.exe []
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25 178312]
S3 LENOVO.TVTVCAM;Lenovo AVFramework Virtual Camera Controller Service; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2015-01-21 626120]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2015-12-10 272864]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2e2476;Služba zasílání zpráv_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7b746e;Služba zasílání zpráv_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_815aeb;Služba zasílání zpráv_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_cde2e;Služba zasílání zpráv_cde2e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d6bf7;Služba zasílání zpráv_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-12 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2e2476;Data kontaktů_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7b746e;Data kontaktů_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_815aeb;Data kontaktů_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d6bf7;Data kontaktů_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2016-01-13 21536]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 LENOVO.CAMMUTE;Lenovo AVFramework Camera Privacy Controller; C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2015-01-21 456136]
S4 LENOVO.TPKNRSVC;Lenovo AVFramework Microphone Volume Controller and Dolby Interface; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2015-01-21 453576]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: RSIT log - prosím o preventivku
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: RSIT log - prosím o preventivku
Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2016-03-01 21:55:09
Microsoft Windows 10 Home
System drive C: has 45 GB (19%) free of 231 GB
Total RAM: 3982 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:55:12, on 1. 3. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
C:\Windows\SysWOW64\lmcfrundll.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{77a2dced-c301-442e-bef8-8021202dffe3}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: @oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Bitdefender Antivirus Free Edition (gzserv) - Bitdefender - C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @oem31.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LnvMHService (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
O23 - Service: LocationTaskManager - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: LSCWinService - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SlimWare Utility Service Launcher (SlimService) - Unknown owner - C:\Program Files\SlimService\SlimServiceFactory.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10238 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a4753fc7-da54-4ed8-aa8a-a28cffbf5bbb -SystemEventPortName:HostProcess-43e7a210-035a-497c-8bf9-13db017e7396 -IoCancelEventPortName:HostProcess-ecad93c9-2941-44c2-ba1b-abbe78bf85b3 -NonStateChangingEventPortName:HostProcess-8a8d8e7d-53bd-4e1b-bf25-15ca21f0cb74 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ceb2b7ee-764e-4cda-b67f-2b650e3e232d -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe" /service
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-599dcb12-8ad7-475a-be1f-799324c21103 -SystemEventPortName:HostProcess-382cab0c-92cb-42bd-b7c4-08496fb99c72 -IoCancelEventPortName:HostProcess-b5bb798a-c1d4-4bc7-81d0-761eca72731b -NonStateChangingEventPortName:HostProcess-df22124c-8e18-4549-8827-f71beaa6c726 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:93e87232-ecd3-40a7-8bcf-85c3219dc74b -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-45f0ecec-b9e1-4d6a-b4a5-671911624874 -SystemEventPortName:HostProcess-98907d62-e343-48d7-8fdd-203af87ec75a -IoCancelEventPortName:HostProcess-6fb187a7-eca4-4bd0-92f8-6cf3af0dca72 -NonStateChangingEventPortName:HostProcess-44884ce2-ac5e-4ad1-8a03-71418dde86dd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:321e6ba9-cf4d-4ace-b176-b60b835a2240 -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1acdd6d4-14a6-4f58-a415-f1a01fcdedcf -SystemEventPortName:HostProcess-91036ac0-b955-4188-9c8d-250857cb19ca -IoCancelEventPortName:HostProcess-b965cb6f-8507-4953-9640-730df280d0a2 -NonStateChangingEventPortName:HostProcess-67c8b8d2-97fd-42cc-99df-e7d991583def -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:71b4491d-89a1-4481-84ad-424db90821b8 -DeviceGroupId:
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
"C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe"
dashost.exe {4e7cf6af-c46c-4b6a-99a918545964f026}
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
sihost.exe
"C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe" -noshow
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
taskeng.exe {1FF0BDE7-99D9-4889-84B6-0D49C0AAD7C8}
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\BatteryCare\BatteryCare.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
igfxEM.exe
igfxHK.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 628 636 8192 632
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1300877549-1184033115-3997360293-10012_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1300877549-1184033115-3997360293-10012 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe"
"C:\Windows\SysWOW64\lmcfrundll.exe" C:\Program Files\Lenovo\Communications Utility\libstartstub2.dll,ProxyStart
C:\WINDOWS\servicing\TrustedInstaller.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.0_none_95e4f9a171a1ad95\TiWorker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5404.0.1540067477\1265921483" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5404.1.981318277\808660494" --font-cache-shared-handle=2224 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5404.2.594681553\1897268918" --font-cache-shared-handle=2212 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5404.3.829764612\1236080560" --font-cache-shared-handle=3056 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5404.4.1552756026\1041037434" --font-cache-shared-handle=4584 /prefetch:673131151
"C:\Users\Martin\Desktop\RSITx64.exe"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
======Scheduled tasks folder======
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\SlimCleaner Plus (Scheduled Scan - Martin).job - C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe /doScheduledScan
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2012-07-20 373760]
"LnvMobHotspotClient"=C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [2014-08-12 937968]
"LMCSSTART1"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART2"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART3"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-01-01 3952800]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-12-04 16408320]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-04 1407104]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2016-01-01 561672]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-11-12 5565448]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAPower"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.inf - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.ini - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "%SystemRoot%\System32\WScript.exe" "%1" %*
.txt - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
======List of files/folders created in the last 1 month======
2016-03-01 21:50:20 ----D---- C:\_OTM
2016-03-01 06:42:29 ----D---- C:\AdwCleaner
2016-02-28 20:26:04 ----D---- C:\rsit
2016-02-28 20:20:49 ----D---- C:\Program Files (x86)\Spyware Terminator
2016-02-23 22:01:38 ----D---- C:\ProgramData\TP-LINK
2016-02-18 23:38:38 ----A---- C:\WINDOWS\system32\drivers\avchv.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avckf.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avc3.sys
2016-02-18 23:37:20 ----D---- C:\Program Files\Bitdefender
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\trufos.sys
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\gzflt.sys
2016-02-18 23:34:08 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2016-02-18 23:33:17 ----D---- C:\Users\Martin\AppData\Roaming\QuickScan
2016-02-13 10:10:21 ----D---- C:\Users\Martin\AppData\Roaming\QipGuard
2016-02-12 21:40:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:30 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-02-12 21:40:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-02-12 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-02-12 21:40:26 ----A---- C:\WINDOWS\system32\shell32.dll
2016-02-12 21:40:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-12 21:40:19 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-12 21:40:17 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\twinui.dll
2016-02-12 21:40:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-02-12 21:40:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\system32\InputService.dll
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-02-12 21:40:06 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-02-12 21:40:05 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-02-12 21:40:03 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\explorer.exe
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\services.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\invagent.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\devinv.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-09 20:04:10 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2016-02-05 09:50:28 ----D---- C:\WINDOWS\system32\DAX2
2016-02-05 09:49:28 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosade.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\sltech64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\slprp64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\slcnt64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2016-02-05 09:49:15 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-02-05 09:49:01 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2016-02-05 09:48:46 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-02-05 09:48:39 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64.dll
2016-02-05 09:48:33 ----A---- C:\WINDOWS\system32\CX64APO.dll
2016-02-05 09:48:32 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2016-02-05 09:48:28 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-02-05 09:46:08 ----A---- C:\WINDOWS\RtlExUpd.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2016-02-05 09:27:31 ----D---- C:\ProgramData\SlimWare Utilities, Inc
======List of files/folders modified in the last 1 month======
2016-03-01 21:55:12 ----D---- C:\Program Files\trend micro
2016-03-01 21:54:25 ----D---- C:\WINDOWS\Prefetch
2016-03-01 21:54:15 ----D---- C:\WINDOWS\Temp
2016-03-01 21:52:34 ----D---- C:\WINDOWS\system32\sru
2016-03-01 21:52:12 ----D---- C:\WINDOWS\SysWOW64
2016-03-01 21:52:12 ----D---- C:\Windows
2016-03-01 21:52:12 ----AD---- C:\WINDOWS\System32
2016-03-01 21:50:20 ----D---- C:\WINDOWS\Tasks
2016-03-01 21:49:31 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2016-03-01 21:31:51 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 21:18:12 ----D---- C:\Download
2016-03-01 21:15:54 ----D---- C:\WINDOWS\system32\config
2016-03-01 21:02:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-01 20:53:45 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:53:40 ----RSD---- C:\WINDOWS\assembly
2016-03-01 20:53:35 ----D---- C:\Users\Martin\AppData\Roaming\LSC
2016-03-01 20:53:34 ----D---- C:\Program Files (x86)\Lenovo
2016-03-01 20:53:32 ----D---- C:\Program Files\Lenovo
2016-03-01 20:53:10 ----D---- C:\WINDOWS\Downloaded Installations
2016-03-01 20:41:33 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-01 20:31:25 ----D---- C:\Users\Martin\AppData\Roaming\eM Client
2016-03-01 20:31:16 ----AD---- C:\Program Files (x86)\eM Client
2016-03-01 20:30:49 ----SHD---- C:\System Volume Information
2016-03-01 06:44:22 ----RD---- C:\Program Files
2016-03-01 06:44:22 ----HD---- C:\ProgramData
2016-02-28 21:50:29 ----D---- C:\WINDOWS\system32\drivers
2016-02-28 20:30:11 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2016-02-28 20:20:49 ----RD---- C:\Program Files (x86)
2016-02-24 10:23:23 ----D---- C:\WINDOWS\INF
2016-02-23 22:05:30 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-23 22:05:21 ----D---- C:\Temp
2016-02-22 21:52:53 ----D---- C:\Users\Martin\AppData\Roaming\dvdcss
2016-02-18 23:35:24 ----D---- C:\ProgramData\AVAST Software
2016-02-18 23:35:24 ----D---- C:\Program Files\AVAST Software
2016-02-15 11:36:41 ----D---- C:\Users\Martin\AppData\Roaming\BatteryCare
2016-02-14 22:21:59 ----D---- C:\WINDOWS\rescache
2016-02-14 15:07:12 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 15:07:12 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-02-13 22:47:23 ----D---- C:\WINDOWS\AppReadiness
2016-02-13 19:20:31 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-13 17:59:30 ----D---- C:\Users\Martin\AppData\Roaming\AIMP3
2016-02-13 16:49:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-13 11:49:20 ----D---- C:\Vypaleni
2016-02-13 10:10:22 ----D---- C:\Program Files (x86)\QIP Infium
2016-02-13 10:05:18 ----D---- C:\ProgramData\Skype
2016-02-12 22:07:00 ----HD---- C:\Program Files\WindowsApps
2016-02-12 22:05:17 ----D---- C:\WINDOWS\WinSxS
2016-02-12 21:50:29 ----SD---- C:\WINDOWS\system32\F12
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\oobe
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\PurchaseDialog
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-12 21:50:28 ----D---- C:\WINDOWS\system32\appraiser
2016-02-12 21:50:28 ----D---- C:\WINDOWS\bcastdvr
2016-02-12 21:50:28 ----D---- C:\WINDOWS\AppPatch
2016-02-12 21:50:28 ----D---- C:\Program Files\Windows Journal
2016-02-12 21:48:21 ----D---- C:\WINDOWS\CbsTemp
2016-02-12 21:47:26 ----D---- C:\WINDOWS\system32\MRT
2016-02-12 21:41:32 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-12 21:37:44 ----D---- C:\WINDOWS\system32\catroot2
2016-02-12 21:33:36 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-09 20:04:29 ----D---- C:\Program Files (x86)\Common Files
2016-02-09 20:03:30 ----D---- C:\Program Files (x86)\Java
2016-02-08 22:45:09 ----D---- C:\WINDOWS\debug
2016-02-08 20:56:20 ----D---- C:\WINDOWS\system32\NDF
2016-02-05 09:50:55 ----HD---- C:\Program Files (x86)\Temp
2016-02-05 09:50:11 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-02-05 09:33:14 ----D---- C:\Program Files (x86)\Realtek
2016-02-05 09:32:30 ----D---- C:\DRIVERS
2016-02-03 20:01:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avc3;avc3; C:\WINDOWS\system32\DRIVERS\avc3.sys [2013-04-17 718840]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-11-19 652344]
R0 trufos;trufos; C:\WINDOWS\system32\DRIVERS\trufos.sys [2013-05-28 382536]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 gzflt;gzflt; C:\WINDOWS\system32\DRIVERS\gzflt.sys [2013-04-22 148696]
R1 TPPWRIF;TPPWRIF; C:\WINDOWS\System32\drivers\Tppwr64v.sys [2015-01-16 20736]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AmUStor;@oem27.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2012-07-20 100992]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2016-01-01 173312]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 84992]
R3 Hamachi;@oem1.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-11-12 45680]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2016-01-01 72400]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-01-01 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-12-04 4694784]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem25.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 LnvHIDHW;@oem0.inf,%LnvHIDHW%;Lenovo HID Mini-driver for Hardware Radio Switch; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [2014-04-07 29496]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 rt640x64;@oem14.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-01-01 44192]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-01-01 630944]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [2013-07-02 121928]
S3 aswTap;@oem12.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2014-09-05 44640]
S3 avckf;avckf; C:\WINDOWS\system32\DRIVERS\avckf.sys [2013-04-17 593144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 953856]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2016-01-01 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-01 117248]
S3 Fastboot;Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [2014-02-22 66288]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RtlWlanu;@netrtwlanu.inf,%RtlWlanu.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter; C:\WINDOWS\System32\drivers\rtwlanu.sys [2015-10-30 3764736]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVControlCenter;AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [2015-01-21 560584]
R2 BcmBtRSupport;@oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2016-01-01 2251992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2014-02-22 140016]
R2 gzserv;Bitdefender Antivirus Free Edition; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [2013-10-23 69368]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-11-12 2546184]
R2 IBMPMSVC;@oem31.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2016-01-01 131312]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-01-01 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Lenovo Settings Service;Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2015-01-23 2016472]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-11-12 417552]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-01-01 247968]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-01-01 291744]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-03-12 131544]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S2 LnvHotSpotSvc;LnvMHService; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [2014-08-12 474608]
S2 LocationTaskManager;LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [2015-01-09 469720]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2e2476;Hostitel synchronizace_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3e7d1;Hostitel synchronizace_3e7d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7b746e;Hostitel synchronizace_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_815aeb;Hostitel synchronizace_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d6bf7;Hostitel synchronizace_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SlimService;SlimWare Utility Service Launcher; C:\Program Files\SlimService\SlimServiceFactory.exe []
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25 178312]
S3 LENOVO.TVTVCAM;Lenovo AVFramework Virtual Camera Controller Service; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2015-01-21 626120]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2016-01-08 272864]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2e2476;Služba zasílání zpráv_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3e7d1;Služba zasílání zpráv_3e7d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7b746e;Služba zasílání zpráv_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_815aeb;Služba zasílání zpráv_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d6bf7;Služba zasílání zpráv_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-12 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2e2476;Data kontaktů_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3e7d1;Data kontaktů_3e7d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7b746e;Data kontaktů_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_815aeb;Data kontaktů_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d6bf7;Data kontaktů_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Power Manager DBC Service;Lenovo Settings Power Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2015-01-16 1668848]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2016-01-13 21536]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 LENOVO.CAMMUTE;Lenovo AVFramework Camera Privacy Controller; C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2015-01-21 456136]
S4 LENOVO.TPKNRSVC;Lenovo AVFramework Microphone Volume Controller and Dolby Interface; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2015-01-21 453576]
-----------------EOF-----------------
Run by Martin at 2016-03-01 21:55:09
Microsoft Windows 10 Home
System drive C: has 45 GB (19%) free of 231 GB
Total RAM: 3982 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:55:12, on 1. 3. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
C:\Windows\SysWOW64\lmcfrundll.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{77a2dced-c301-442e-bef8-8021202dffe3}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: @oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Bitdefender Antivirus Free Edition (gzserv) - Bitdefender - C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @oem31.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LnvMHService (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
O23 - Service: LocationTaskManager - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: LSCWinService - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SlimWare Utility Service Launcher (SlimService) - Unknown owner - C:\Program Files\SlimService\SlimServiceFactory.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10238 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a4753fc7-da54-4ed8-aa8a-a28cffbf5bbb -SystemEventPortName:HostProcess-43e7a210-035a-497c-8bf9-13db017e7396 -IoCancelEventPortName:HostProcess-ecad93c9-2941-44c2-ba1b-abbe78bf85b3 -NonStateChangingEventPortName:HostProcess-8a8d8e7d-53bd-4e1b-bf25-15ca21f0cb74 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ceb2b7ee-764e-4cda-b67f-2b650e3e232d -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe" /service
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-599dcb12-8ad7-475a-be1f-799324c21103 -SystemEventPortName:HostProcess-382cab0c-92cb-42bd-b7c4-08496fb99c72 -IoCancelEventPortName:HostProcess-b5bb798a-c1d4-4bc7-81d0-761eca72731b -NonStateChangingEventPortName:HostProcess-df22124c-8e18-4549-8827-f71beaa6c726 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:93e87232-ecd3-40a7-8bcf-85c3219dc74b -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-45f0ecec-b9e1-4d6a-b4a5-671911624874 -SystemEventPortName:HostProcess-98907d62-e343-48d7-8fdd-203af87ec75a -IoCancelEventPortName:HostProcess-6fb187a7-eca4-4bd0-92f8-6cf3af0dca72 -NonStateChangingEventPortName:HostProcess-44884ce2-ac5e-4ad1-8a03-71418dde86dd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:321e6ba9-cf4d-4ace-b176-b60b835a2240 -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1acdd6d4-14a6-4f58-a415-f1a01fcdedcf -SystemEventPortName:HostProcess-91036ac0-b955-4188-9c8d-250857cb19ca -IoCancelEventPortName:HostProcess-b965cb6f-8507-4953-9640-730df280d0a2 -NonStateChangingEventPortName:HostProcess-67c8b8d2-97fd-42cc-99df-e7d991583def -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:71b4491d-89a1-4481-84ad-424db90821b8 -DeviceGroupId:
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
"C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe"
dashost.exe {4e7cf6af-c46c-4b6a-99a918545964f026}
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
sihost.exe
"C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe" -noshow
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
taskeng.exe {1FF0BDE7-99D9-4889-84B6-0D49C0AAD7C8}
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\BatteryCare\BatteryCare.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
igfxEM.exe
igfxHK.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 628 636 8192 632
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1300877549-1184033115-3997360293-10012_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1300877549-1184033115-3997360293-10012 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe"
"C:\Windows\SysWOW64\lmcfrundll.exe" C:\Program Files\Lenovo\Communications Utility\libstartstub2.dll,ProxyStart
C:\WINDOWS\servicing\TrustedInstaller.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.0_none_95e4f9a171a1ad95\TiWorker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5404.0.1540067477\1265921483" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5404.1.981318277\808660494" --font-cache-shared-handle=2224 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5404.2.594681553\1897268918" --font-cache-shared-handle=2212 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5404.3.829764612\1236080560" --font-cache-shared-handle=3056 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_DisplayHintTextPrePeriod1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5404.4.1552756026\1041037434" --font-cache-shared-handle=4584 /prefetch:673131151
"C:\Users\Martin\Desktop\RSITx64.exe"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
======Scheduled tasks folder======
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\SlimCleaner Plus (Scheduled Scan - Martin).job - C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe /doScheduledScan
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2012-07-20 373760]
"LnvMobHotspotClient"=C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [2014-08-12 937968]
"LMCSSTART1"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART2"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"LMCSSTART3"=C:\WINDOWS\SysWOW64\lmcfrundll.exe [2015-01-19 24008]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-01-01 3952800]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-12-04 16408320]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-04 1407104]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2016-01-01 561672]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-11-12 5565448]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAPower"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.inf - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.ini - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "%SystemRoot%\System32\WScript.exe" "%1" %*
.txt - open - "%SystemRoot%\system32\NOTEPAD.EXE" %1
======List of files/folders created in the last 1 month======
2016-03-01 21:50:20 ----D---- C:\_OTM
2016-03-01 06:42:29 ----D---- C:\AdwCleaner
2016-02-28 20:26:04 ----D---- C:\rsit
2016-02-28 20:20:49 ----D---- C:\Program Files (x86)\Spyware Terminator
2016-02-23 22:01:38 ----D---- C:\ProgramData\TP-LINK
2016-02-18 23:38:38 ----A---- C:\WINDOWS\system32\drivers\avchv.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avckf.sys
2016-02-18 23:38:37 ----A---- C:\WINDOWS\system32\drivers\avc3.sys
2016-02-18 23:37:20 ----D---- C:\Program Files\Bitdefender
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\trufos.sys
2016-02-18 23:37:14 ----A---- C:\WINDOWS\system32\drivers\gzflt.sys
2016-02-18 23:34:08 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2016-02-18 23:33:17 ----D---- C:\Users\Martin\AppData\Roaming\QuickScan
2016-02-13 10:10:21 ----D---- C:\Users\Martin\AppData\Roaming\QipGuard
2016-02-12 21:40:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:30 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-02-12 21:40:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-02-12 21:40:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-02-12 21:40:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-02-12 21:40:26 ----A---- C:\WINDOWS\system32\shell32.dll
2016-02-12 21:40:23 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-02-12 21:40:19 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-02-12 21:40:18 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-02-12 21:40:17 ----A---- C:\WINDOWS\system32\mos.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-02-12 21:40:16 ----A---- C:\WINDOWS\system32\twinui.dll
2016-02-12 21:40:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-02-12 21:40:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-02-12 21:40:13 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-02-12 21:40:12 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-02-12 21:40:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-02-12 21:40:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-02-12 21:40:09 ----A---- C:\WINDOWS\system32\InputService.dll
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-02-12 21:40:08 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-02-12 21:40:07 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-02-12 21:40:06 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-02-12 21:40:05 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-02-12 21:40:04 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-02-12 21:40:03 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\msctf.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-02-12 21:40:02 ----A---- C:\WINDOWS\explorer.exe
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\wininet.dll
2016-02-12 21:40:01 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-02-12 21:40:00 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-12 21:39:59 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\quartz.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\MTFServer.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-02-12 21:39:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\MTF.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-12 21:39:57 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\srcore.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-12 21:39:56 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\wlidcli.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-02-12 21:39:55 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\SYSWOW64\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\services.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-12 21:39:54 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\SMSRouter.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\rasdlg.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\OpenWith.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\DDDS.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-02-12 21:39:53 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ztrace_maps.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winhttpcom.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\winbio.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\sscoreext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastlsext.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rastls.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasautou.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasauto.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\pcaui.exe
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\invagent.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\iassam.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\FilterDS.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\evr.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\devinv.dll
2016-02-12 21:39:52 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-09 20:04:10 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2016-02-05 09:50:28 ----D---- C:\WINDOWS\system32\DAX2
2016-02-05 09:49:28 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2016-02-05 09:49:27 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tosade.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2016-02-05 09:49:26 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRCOM.dll
2016-02-05 09:49:25 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\sltech64.dll
2016-02-05 09:49:24 ----A---- C:\WINDOWS\system32\slprp64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\slcnt64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2016-02-05 09:49:23 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2016-02-05 09:49:22 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.DLL
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2016-02-05 09:49:21 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2016-02-05 09:49:19 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2016-02-05 09:49:18 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2016-02-05 09:49:17 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2016-02-05 09:49:15 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2016-02-05 09:49:13 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2016-02-05 09:49:09 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-02-05 09:49:06 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-02-05 09:49:05 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-02-05 09:49:03 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-02-05 09:49:02 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-02-05 09:49:01 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-02-05 09:48:59 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-02-05 09:48:58 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2016-02-05 09:48:57 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-02-05 09:48:55 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2016-02-05 09:48:46 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-02-05 09:48:44 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-02-05 09:48:43 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-02-05 09:48:42 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-02-05 09:48:41 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-02-05 09:48:40 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-02-05 09:48:39 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2016-02-05 09:48:38 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2016-02-05 09:48:37 ----A---- C:\WINDOWS\system32\DDPA64.dll
2016-02-05 09:48:33 ----A---- C:\WINDOWS\system32\CX64APO.dll
2016-02-05 09:48:32 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2016-02-05 09:48:29 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2016-02-05 09:48:28 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-02-05 09:46:08 ----A---- C:\WINDOWS\RtlExUpd.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2016-02-05 09:33:15 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2016-02-05 09:27:31 ----D---- C:\ProgramData\SlimWare Utilities, Inc
======List of files/folders modified in the last 1 month======
2016-03-01 21:55:12 ----D---- C:\Program Files\trend micro
2016-03-01 21:54:25 ----D---- C:\WINDOWS\Prefetch
2016-03-01 21:54:15 ----D---- C:\WINDOWS\Temp
2016-03-01 21:52:34 ----D---- C:\WINDOWS\system32\sru
2016-03-01 21:52:12 ----D---- C:\WINDOWS\SysWOW64
2016-03-01 21:52:12 ----D---- C:\Windows
2016-03-01 21:52:12 ----AD---- C:\WINDOWS\System32
2016-03-01 21:50:20 ----D---- C:\WINDOWS\Tasks
2016-03-01 21:49:31 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2016-03-01 21:31:51 ----D---- C:\WINDOWS\system32\Tasks
2016-03-01 21:18:12 ----D---- C:\Download
2016-03-01 21:15:54 ----D---- C:\WINDOWS\system32\config
2016-03-01 21:02:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-03-01 20:53:45 ----SHD---- C:\WINDOWS\Installer
2016-03-01 20:53:40 ----RSD---- C:\WINDOWS\assembly
2016-03-01 20:53:35 ----D---- C:\Users\Martin\AppData\Roaming\LSC
2016-03-01 20:53:34 ----D---- C:\Program Files (x86)\Lenovo
2016-03-01 20:53:32 ----D---- C:\Program Files\Lenovo
2016-03-01 20:53:10 ----D---- C:\WINDOWS\Downloaded Installations
2016-03-01 20:41:33 ----D---- C:\WINDOWS\Microsoft.NET
2016-03-01 20:31:25 ----D---- C:\Users\Martin\AppData\Roaming\eM Client
2016-03-01 20:31:16 ----AD---- C:\Program Files (x86)\eM Client
2016-03-01 20:30:49 ----SHD---- C:\System Volume Information
2016-03-01 06:44:22 ----RD---- C:\Program Files
2016-03-01 06:44:22 ----HD---- C:\ProgramData
2016-02-28 21:50:29 ----D---- C:\WINDOWS\system32\drivers
2016-02-28 20:30:11 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2016-02-28 20:20:49 ----RD---- C:\Program Files (x86)
2016-02-24 10:23:23 ----D---- C:\WINDOWS\INF
2016-02-23 22:05:30 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-23 22:05:21 ----D---- C:\Temp
2016-02-22 21:52:53 ----D---- C:\Users\Martin\AppData\Roaming\dvdcss
2016-02-18 23:35:24 ----D---- C:\ProgramData\AVAST Software
2016-02-18 23:35:24 ----D---- C:\Program Files\AVAST Software
2016-02-15 11:36:41 ----D---- C:\Users\Martin\AppData\Roaming\BatteryCare
2016-02-14 22:21:59 ----D---- C:\WINDOWS\rescache
2016-02-14 15:07:12 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 15:07:12 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-02-13 22:47:23 ----D---- C:\WINDOWS\AppReadiness
2016-02-13 19:20:31 ----D---- C:\WINDOWS\LiveKernelReports
2016-02-13 17:59:30 ----D---- C:\Users\Martin\AppData\Roaming\AIMP3
2016-02-13 16:49:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-13 11:49:20 ----D---- C:\Vypaleni
2016-02-13 10:10:22 ----D---- C:\Program Files (x86)\QIP Infium
2016-02-13 10:05:18 ----D---- C:\ProgramData\Skype
2016-02-12 22:07:00 ----HD---- C:\Program Files\WindowsApps
2016-02-12 22:05:17 ----D---- C:\WINDOWS\WinSxS
2016-02-12 21:50:29 ----SD---- C:\WINDOWS\system32\F12
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\oobe
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\migration
2016-02-12 21:50:29 ----D---- C:\WINDOWS\system32\cs-CZ
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\PurchaseDialog
2016-02-12 21:50:28 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-02-12 21:50:28 ----D---- C:\WINDOWS\system32\appraiser
2016-02-12 21:50:28 ----D---- C:\WINDOWS\bcastdvr
2016-02-12 21:50:28 ----D---- C:\WINDOWS\AppPatch
2016-02-12 21:50:28 ----D---- C:\Program Files\Windows Journal
2016-02-12 21:48:21 ----D---- C:\WINDOWS\CbsTemp
2016-02-12 21:47:26 ----D---- C:\WINDOWS\system32\MRT
2016-02-12 21:41:32 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-12 21:37:44 ----D---- C:\WINDOWS\system32\catroot2
2016-02-12 21:33:36 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-09 20:04:29 ----D---- C:\Program Files (x86)\Common Files
2016-02-09 20:03:30 ----D---- C:\Program Files (x86)\Java
2016-02-08 22:45:09 ----D---- C:\WINDOWS\debug
2016-02-08 20:56:20 ----D---- C:\WINDOWS\system32\NDF
2016-02-05 09:50:55 ----HD---- C:\Program Files (x86)\Temp
2016-02-05 09:50:11 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-02-05 09:33:14 ----D---- C:\Program Files (x86)\Realtek
2016-02-05 09:32:30 ----D---- C:\DRIVERS
2016-02-03 20:01:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avc3;avc3; C:\WINDOWS\system32\DRIVERS\avc3.sys [2013-04-17 718840]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-11-19 652344]
R0 trufos;trufos; C:\WINDOWS\system32\DRIVERS\trufos.sys [2013-05-28 382536]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 gzflt;gzflt; C:\WINDOWS\system32\DRIVERS\gzflt.sys [2013-04-22 148696]
R1 TPPWRIF;TPPWRIF; C:\WINDOWS\System32\drivers\Tppwr64v.sys [2015-01-16 20736]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AmUStor;@oem27.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2012-07-20 100992]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2016-01-01 173312]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2015-10-30 7585280]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 84992]
R3 Hamachi;@oem1.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-11-12 45680]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2016-01-01 72400]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-01-01 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-12-04 4694784]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem25.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 LnvHIDHW;@oem0.inf,%LnvHIDHW%;Lenovo HID Mini-driver for Hardware Radio Switch; C:\WINDOWS\System32\drivers\LnvHIDHW.sys [2014-04-07 29496]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-03-12 64624]
R3 rt640x64;@oem14.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-01-01 44192]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-01-01 630944]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [2013-07-02 121928]
S3 aswTap;@oem12.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2014-09-05 44640]
S3 avckf;avckf; C:\WINDOWS\system32\DRIVERS\avckf.sys [2013-04-17 593144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 953856]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2016-01-01 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-01 117248]
S3 Fastboot;Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [2014-02-22 66288]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RtlWlanu;@netrtwlanu.inf,%RtlWlanu.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter; C:\WINDOWS\System32\drivers\rtwlanu.sys [2015-10-30 3764736]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVControlCenter;AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [2015-01-21 560584]
R2 BcmBtRSupport;@oem30.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2016-01-01 2251992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2014-02-22 140016]
R2 gzserv;Bitdefender Antivirus Free Edition; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [2013-10-23 69368]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-11-12 2546184]
R2 IBMPMSVC;@oem31.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2016-01-01 131312]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-01-01 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Lenovo Settings Service;Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2015-01-23 2016472]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-11-12 417552]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-01-01 247968]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-01-01 291744]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-03-12 131544]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-03-12 169432]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-03-12 366552]
S2 LnvHotSpotSvc;LnvMHService; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [2014-08-12 474608]
S2 LocationTaskManager;LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [2015-01-09 469720]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2e2476;Hostitel synchronizace_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3e7d1;Hostitel synchronizace_3e7d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_7b746e;Hostitel synchronizace_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_815aeb;Hostitel synchronizace_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d6bf7;Hostitel synchronizace_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 SlimService;SlimWare Utility Service Launcher; C:\Program Files\SlimService\SlimServiceFactory.exe []
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-20 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25 178312]
S3 LENOVO.TVTVCAM;Lenovo AVFramework Virtual Camera Controller Service; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2015-01-21 626120]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2016-01-08 272864]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2e2476;Služba zasílání zpráv_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3e7d1;Služba zasílání zpráv_3e7d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7b746e;Služba zasílání zpráv_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_815aeb;Služba zasílání zpráv_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d6bf7;Služba zasílání zpráv_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-12 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2e2476;Data kontaktů_2e2476; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3e7d1;Data kontaktů_3e7d1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_7b746e;Data kontaktů_7b746e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_815aeb;Data kontaktů_815aeb; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d6bf7;Data kontaktů_d6bf7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Power Manager DBC Service;Lenovo Settings Power Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2015-01-16 1668848]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2016-01-13 21536]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S3 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 LENOVO.CAMMUTE;Lenovo AVFramework Camera Privacy Controller; C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2015-01-21 456136]
S4 LENOVO.TPKNRSVC;Lenovo AVFramework Microphone Volume Controller and Dolby Interface; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2015-01-21 453576]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: RSIT log - prosím o preventivku
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: RSIT log - prosím o preventivku
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?