VIRY.CZ

Dobrý den, včera jsem si při pokusu flashnout mobil stáhl nějakou čínskou srandu, zjistil jsem že má zřejmě název Tencent, od rána se pokouším dostat ho ven z pc ale nedaří se .. Pročetl jsem pár fór kde se to řešilo ale buď mi neběží doporučované programy kvůli win 10 nebo prostě nepomahají, za případnou pomoc děkuji


Logfile of random's system information tool 1.10 (written by random/random)
Run by Matty at 2016-04-19 09:17:14
Microsoft Windows 10 Home
System drive C: has 125 GB (44%) free of 285 GB
Total RAM: 6027 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:17:15, on 19.04.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCTray.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\plugins\QMNetMon\QQPCNetFlow.exe
C:\Users\Matty\AppData\Roaming\vnlgp\vnlgp\vnlgp.exe
C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCRealTimeSpeedup.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\ismagent.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Matty.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hao123.com/?tn=95972258_hao_pg
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hao123.com/?tn=95972258_hao_pg
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUS InstantKey] C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [apphide] C:\Program Files (x86)\badu\uc.exe
O4 - HKLM\..\Run: [pcmgr] C:\Program Files (x86)\badu\Uninst.exe
O4 - HKLM\..\Run: [ QQPCTray] "C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCTRAY.EXE" /regrun /qqrepair
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Matty\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Matty\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [C] cmd /c(@attrib -H -R -S C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol >nul)&(@copy/b/y C:\WINDOWS\system32\GroupPolicy\Machine\R C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol >nul)&(@attrib +R C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol >nul)&(@start/b gpupdate.exe /Force >L)
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [apphide] C:\Program Files (x86)\badu\uc.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1258968961-4158239584-3575725969-1001\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1258968961-4158239584-3575725969-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files\ASUS\P4G\InsOnSrv.exe
O23 - Service: Asus WebStorage Windows Service - Unknown owner - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: BrcmSetSecurity - Intel Corporation - C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: QQPCMgr RTP Service (QQPCRTP) - Tencent - C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCRTP.exe
O23 - Service: QQRepaircd2 - Unknown owner - C:\Program.exe (file missing)
O23 - Service: QQRepairFixSVC - Unknown owner - C:\Program.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TAOFrame - Tencent - C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TAOFrame.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: UC??????? (UCBrowserSvc) - Unknown owner - C:\Program Files (x86)\UCBrowser\Application\UCService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12204 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\igfxCUIService.exe
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCRTP.exe" -r
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\windows\system32\mfevtps.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\ASUS\P4G\InsOnSrv.exe"
"C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\UCBrowser\Application\UCService.exe"
dashost.exe {b0f841f0-086d-4285-bdb385b12a735410}
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
"C:\windows\system32\mfevtps.exe" -mms
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
sihost.exe
"C:\Program Files\ASUS\P4G\InsOnWMI.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
taskeng.exe {BC528791-98F0-45AA-8972-090F9614CE0E}
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
KBFiltr.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCTray.exe" /elevated /regrun
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\igfxTray.exe"
igfxEM.exe
cmd /C "C:\Users\Matty\AppData\Roaming\vnlgp\vnlgp\start.cmd"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --profile-directory="Profile 1"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=49.0.2623.112 --handshake-handle=0x1ac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4728.0.964976030\997156554" --supports-dual-gpus=false --gpu-driver-bug-workarounds=3,11,16,25,54 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=20.19.15.4331 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledDisablePreConnect/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_61/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4728.2.721368875\694707349" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledDisablePreConnect/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_61/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4728.3.604746853\115983946" /prefetch:1
"C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\plugins\QMNetMon\QQPCNetFlow.exe" /regrun /elevated
vnlgp.exe --config vnlgp.conf
"C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TAOFrame.exe"
"C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCRealTimeSpeedup.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledDisablePreConnect/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_61/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4728.5.1338857499\2141450795" /prefetch:1

C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PreRead/Default/*QUIC/EnabledDisablePreConnect/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_61/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4728.6.229071173\1190120192" /prefetch:1

"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
wmiadap.exe /F /T /R
"C:\Program Files (x86)\UCBrowser\Application\5.6.11815.13\UCAgent.exe"
"C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\ismagent.exe" --domain-id e57b59e7-5862-4250-9ce0-76fb411dc0d2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/1DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PreRead/Default/*QUIC/EnabledDisablePreConnect/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_61/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4728.8.1224153158\1768962218" /prefetch:1
"C:\Users\Matty\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\UCBrowserUpdater.job - C:\Program Files (x86)\UCBrowser\Application\update_task.exe /update

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}]
电脑管家网页防火墙 - C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TSWebMon64.dat [2016-04-18 413536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-08-21 13650648]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-08-07 1321688]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-12-19 402344]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-11-17 1804432]
"vnlgp"=C:\Users\Matty\AppData\Roaming\vnlgp\vnlgp\start.cmd [2016-04-04 214]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Matty\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-31 551112]
"uTorrent"=C:\Users\Matty\AppData\Roaming\uTorrent\uTorrent.exe [2016-03-05 2094080]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-02-04 3014224]
"C"=cmd /c(@attrib -H -R -S C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol >nul)&(@copy/b/y C:\WINDOWS\system32\GroupPolicy\Machine\R C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol >nul)&(@attrib +R C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol >nul)&(@start/b gpupdate.exe /Force >L) []
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-01-15 8619224]
"apphide"=C:\Program Files (x86)\badu\uc.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2013-05-01 3187360]
"ASUS InstantKey"=C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [2013-08-27 13936]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-04-08 23248560]
"apphide"=C:\Program Files (x86)\badu\uc.exe []
"pcmgr"=C:\Program Files (x86)\badu\Uninst.exe []
" QQPCTray"=C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCTRAY.EXE [2016-04-18 355296]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\QQPCRTP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-04-19 09:15:03 ----D---- C:\rsit
2016-04-19 09:15:03 ----D---- C:\Program Files\trend micro
2016-04-19 08:44:24 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-04-19 08:11:44 ----A---- C:\WINDOWS\SYSWOW64\drivers\TS888x64.sys
2016-04-19 08:00:53 ----D---- C:\ProgramData\TXQMPC
2016-04-19 07:49:42 ----D---- C:\ProgramData\KingSoft
2016-04-19 07:48:00 ----A---- C:\WINDOWS\SYSWOW64\drivers\TsFltMgr.sys
2016-04-18 11:05:54 ----A---- C:\WINDOWS\system32\drivers\TAOAccelerator64.sys
2016-04-18 11:05:45 ----D---- C:\Program Files\Common Files\Tencent
2016-04-18 11:05:45 ----A---- C:\WINDOWS\system32\drivers\TAOKernel64.sys
2016-04-18 11:05:35 ----D---- C:\ProgramData\Application Data
2016-04-18 11:05:34 ----A---- C:\WINDOWS\system32\drivers\TFsFltX64.sys
2016-04-18 11:04:46 ----D---- C:\Program Files (x86)\Tencent
2016-04-18 11:04:39 ----D---- C:\Users\Matty\AppData\Roaming\Tencent
2016-04-18 11:04:36 ----D---- C:\ProgramData\Tencent
2016-04-18 10:28:21 ----A---- C:\WINDOWS\system32\drivers\ucguard.sys
2016-04-18 10:27:45 ----D---- C:\Program Files (x86)\UCBrowser
2016-04-18 10:24:38 ----D---- C:\Program Files (x86)\badu
2016-04-18 10:14:19 ----D---- C:\Program Files (x86)\Seznam.cz
2016-04-18 10:13:57 ----D---- C:\Users\Matty\AppData\Roaming\NVIDIA
2016-04-18 10:13:52 ----AD---- C:\Users\Matty\AppData\Roaming\vnlgp
2016-04-17 09:10:45 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-04-17 09:10:44 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-04-17 09:10:44 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-04-17 09:10:40 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-04-17 09:10:40 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-04-17 09:10:40 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-04-17 09:10:39 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-04-17 09:10:39 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-04-17 09:10:37 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-04-17 09:10:37 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-04-17 09:10:37 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-04-17 09:10:37 ----A---- C:\WINDOWS\system32\wininet.dll
2016-04-17 09:10:37 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-04-17 09:10:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-04-17 09:10:36 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-04-17 09:10:35 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-04-17 09:10:35 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-04-17 09:10:34 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-04-17 09:10:34 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-04-17 09:10:34 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-04-17 09:10:34 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-04-17 09:10:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-04-17 09:10:33 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-04-17 09:10:32 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-04-17 09:10:32 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-04-17 09:10:31 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-04-17 09:10:30 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-04-17 09:10:30 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-04-17 09:10:30 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-17 09:10:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-04-17 09:10:29 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-04-17 09:10:22 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-04-17 09:10:22 ----A---- C:\WINDOWS\system32\SRH.dll
2016-04-17 09:10:21 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-04-17 09:10:21 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-17 09:10:21 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-04-17 09:10:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-04-17 09:10:18 ----A---- C:\WINDOWS\system32\twinui.dll
2016-04-17 09:10:17 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-04-17 09:10:17 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-04-17 09:10:17 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-04-17 09:10:16 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-04-17 09:10:16 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-04-17 09:10:16 ----A---- C:\WINDOWS\system32\InputService.dll
2016-04-17 09:10:16 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-04-17 09:10:14 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-04-17 09:10:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-17 09:10:11 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-17 09:10:11 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-04-17 09:10:10 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-04-17 09:10:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-04-17 09:10:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-04-17 09:10:09 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-04-17 09:10:08 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-04-17 09:10:07 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-04-17 09:10:07 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-04-17 09:10:07 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-04-17 09:10:06 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-04-17 09:10:06 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-04-17 09:10:06 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-17 09:10:05 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-04-17 09:10:05 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-04-17 09:10:05 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-17 09:10:05 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-04-17 09:10:04 ----A---- C:\WINDOWS\system32\esent.dll
2016-04-17 09:10:03 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-04-17 09:10:03 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-04-17 09:10:03 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-04-17 09:10:02 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-17 09:10:02 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-17 09:10:02 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-17 09:10:02 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-04-17 09:10:02 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-04-17 09:10:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-04-17 09:10:01 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-04-17 09:10:01 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-04-17 09:10:00 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-04-17 09:10:00 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-17 09:09:59 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-04-17 09:09:59 ----A---- C:\WINDOWS\system32\winload.exe
2016-04-17 09:09:59 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-17 09:09:59 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-17 09:09:58 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-04-17 09:09:58 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-17 09:09:58 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-17 09:09:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-04-17 09:09:57 ----A---- C:\WINDOWS\system32\winresume.exe
2016-04-17 09:09:57 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-04-17 09:09:56 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-04-17 09:09:55 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-04-17 09:09:55 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-17 09:09:55 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-17 09:09:55 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-17 09:09:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-04-17 09:09:54 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-04-17 09:09:54 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-04-17 09:09:54 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-04-17 09:09:54 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-04-17 09:09:54 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-04-17 09:09:54 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-04-17 09:09:54 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-04-17 09:09:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-04-17 09:09:53 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-04-17 09:09:53 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-04-17 09:09:53 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-04-17 09:09:53 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-04-17 09:09:53 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-04-17 09:09:53 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-04-17 09:09:52 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-04-17 09:09:52 ----A---- C:\WINDOWS\SYSWOW64\AccountsRt.dll
2016-04-17 09:09:52 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-04-17 09:09:52 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-04-17 09:09:52 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-17 09:09:52 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-04-17 09:09:51 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-04-17 09:09:51 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-04-17 09:09:51 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-04-17 09:09:51 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-04-17 09:09:51 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-04-17 09:09:51 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-17 09:09:50 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2016-04-17 09:09:50 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-17 09:09:50 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-04-17 09:09:50 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-17 09:09:50 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-17 09:09:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-04-17 09:09:49 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-04-17 09:09:49 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-17 09:09:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-04-17 09:09:48 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-04-17 09:09:47 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-17 09:09:47 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-04-17 09:09:47 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-04-17 09:09:44 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-04-17 09:09:44 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-17 09:09:44 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-04-17 09:09:43 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-04-17 09:09:43 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-04-17 09:09:43 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-04-17 09:09:43 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-04-17 09:09:43 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-17 09:09:42 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-04-17 09:09:42 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-04-17 09:09:42 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-04-17 09:09:42 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-04-17 09:09:41 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2016-04-17 09:09:41 ----A---- C:\WINDOWS\system32\msi.dll
2016-04-17 09:09:41 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-04-17 09:09:41 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-04-17 09:09:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-04-17 09:09:40 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-04-17 09:09:40 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-17 09:09:40 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-04-17 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-04-17 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-04-17 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-04-17 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-04-17 09:09:39 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-04-17 09:09:39 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-04-17 09:09:39 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2016-04-17 09:09:38 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-04-17 09:09:38 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-04-17 09:09:38 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-17 09:09:38 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-04-17 09:09:38 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-17 09:09:38 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-04-17 09:09:38 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-04-17 09:09:38 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-17 09:09:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-04-17 09:09:35 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-17 09:09:35 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-04-17 09:09:35 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-04-17 09:09:35 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-04-17 09:09:35 ----A---- C:\WINDOWS\system32\fveui.dll
2016-04-17 09:09:35 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-04-17 09:09:34 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-04-17 09:09:34 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-17 09:09:34 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-17 09:09:34 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-04-17 09:09:34 ----A---- C:\WINDOWS\system32\omadmapi.dll
2016-04-17 09:09:34 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-04-17 09:09:34 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-04-17 09:09:33 ----A---- C:\WINDOWS\SYSWOW64\srvcli.dll
2016-04-17 09:09:33 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-04-17 09:09:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-04-17 09:09:32 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-04-17 09:09:32 ----A---- C:\WINDOWS\system32\srvcli.dll
2016-04-17 09:09:32 ----A---- C:\WINDOWS\system32\netapi32.dll
2016-04-17 09:09:31 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-04-17 09:09:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2016-04-17 09:09:31 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-04-17 09:09:31 ----A---- C:\WINDOWS\SYSWOW64\netapi32.dll
2016-04-17 09:09:31 ----A---- C:\WINDOWS\system32\wkscli.dll
2016-04-17 09:09:30 ----A---- C:\WINDOWS\SYSWOW64\wkscli.dll
2016-04-17 09:09:30 ----A---- C:\WINDOWS\system32\oleacc.dll
2016-04-17 09:09:30 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-04-17 09:09:30 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-04-17 09:09:30 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-04-17 09:09:30 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-04-17 09:09:30 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-17 09:09:29 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-04-17 09:09:29 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2016-04-17 09:09:29 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-04-17 09:09:29 ----A---- C:\WINDOWS\system32\easinvoker.exe
2016-04-17 09:09:29 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-04-17 09:09:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-04-17 09:09:28 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-04-17 09:09:28 ----A---- C:\WINDOWS\system32\wsdchngr.dll
2016-04-17 09:09:28 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-17 09:09:28 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-04-17 09:09:28 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-04-17 09:09:27 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-04-17 09:09:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-17 09:09:27 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-04-17 09:09:27 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-04-17 09:09:27 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-04-17 09:09:25 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-04-17 09:09:24 ----A---- C:\WINDOWS\SYSWOW64\wsdchngr.dll
2016-04-17 09:09:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-17 09:09:24 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-17 09:09:24 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-17 09:09:24 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-17 09:09:24 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-04-17 09:09:24 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-04-17 09:09:23 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2016-04-17 09:09:23 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-04-17 09:09:23 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-17 09:09:23 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-04-17 09:09:22 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-04-17 09:09:22 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-04-17 09:09:22 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-17 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\browcli.dll
2016-04-17 09:09:21 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-17 09:09:21 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-04-17 09:09:21 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-04-17 09:09:21 ----A---- C:\WINDOWS\system32\browser.dll
2016-04-17 09:09:21 ----A---- C:\WINDOWS\system32\browcli.dll
2016-04-17 09:09:21 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-04-17 09:09:21 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-04-17 09:09:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-17 09:09:20 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-04-17 09:09:20 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-17 09:09:20 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-04-17 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2016-04-17 09:09:19 ----A---- C:\WINDOWS\system32\tbauth.dll
2016-04-17 09:09:19 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2016-04-17 09:09:19 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2016-04-17 09:09:19 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2016-04-17 09:09:19 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-04-17 09:09:18 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-17 09:09:17 ----A---- C:\WINDOWS\system32\wups.dll
2016-04-17 09:09:17 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-17 09:09:17 ----A---- C:\WINDOWS\system32\samlib.dll
2016-04-17 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2016-04-17 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2016-04-17 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-04-17 09:09:16 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-17 09:09:16 ----A---- C:\WINDOWS\system32\moshost.dll
2016-04-17 09:09:16 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-04-17 09:09:16 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-04-17 09:09:15 ----A---- C:\WINDOWS\system32\mos.dll
2016-04-17 09:09:15 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-17 09:09:15 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-17 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-04-17 09:09:14 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-17 09:09:14 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-04-17 09:09:14 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-17 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-04-17 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\OnDemandConnRouteHelper.dll
2016-04-17 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-04-17 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-04-17 09:09:13 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-04-17 09:09:13 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-04-17 09:09:13 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-17 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2016-04-17 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\oleacchooks.dll
2016-04-17 09:09:12 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-04-17 09:09:12 ----A---- C:\WINDOWS\system32\oleacchooks.dll
2016-04-17 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-04-17 09:09:11 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-04-17 09:09:11 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-04-17 09:09:11 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-04-17 09:09:11 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-04-17 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-04-17 09:09:10 ----A---- C:\WINDOWS\system32\MTF.dll
2016-04-17 09:09:10 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-04-17 09:09:10 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS

======List of files/folders modified in the last 1 month======

2016-04-19 09:17:07 ----D---- C:\WINDOWS\System32
2016-04-19 09:17:07 ----D---- C:\WINDOWS\INF
2016-04-19 09:17:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-19 09:16:58 ----D---- C:\WINDOWS\Prefetch
2016-04-19 09:15:03 ----RD---- C:\Program Files
2016-04-19 09:14:17 ----D---- C:\WINDOWS\Temp
2016-04-19 09:13:57 ----D---- C:\ProgramData\ASUS Smart Gesture
2016-04-19 09:13:51 ----D---- C:\Program Files (x86)\Steam
2016-04-19 09:12:32 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-04-19 09:10:35 ----RD---- C:\WINDOWS\PurchaseDialog
2016-04-19 09:10:35 ----D---- C:\WINDOWS\system32\drivers
2016-04-19 09:09:36 ----SHD---- C:\System Volume Information
2016-04-19 09:09:02 ----D---- C:\WINDOWS\system32\sru
2016-04-19 08:44:24 ----HD---- C:\ProgramData
2016-04-19 08:31:46 ----D---- C:\WINDOWS\system32\config
2016-04-19 08:29:45 ----D---- C:\WINDOWS\Microsoft.NET
2016-04-19 08:16:33 ----D---- C:\Windows
2016-04-19 08:15:59 ----D---- C:\WINDOWS\AppReadiness
2016-04-19 08:15:48 ----HD---- C:\Program Files\WindowsApps
2016-04-19 08:11:44 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-04-19 08:09:01 ----D---- C:\WINDOWS\WinSxS
2016-04-19 08:04:37 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-04-19 08:04:37 ----D---- C:\WINDOWS\SysWOW64
2016-04-19 08:04:31 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-04-19 08:04:30 ----D---- C:\WINDOWS\system32\cs-CZ
2016-04-19 08:04:30 ----D---- C:\WINDOWS\system32\Boot
2016-04-19 08:04:30 ----D---- C:\WINDOWS\system32\appraiser
2016-04-19 08:04:16 ----D---- C:\WINDOWS\PolicyDefinitions
2016-04-19 08:04:14 ----D---- C:\WINDOWS\bcastdvr
2016-04-19 08:04:14 ----D---- C:\WINDOWS\AppPatch
2016-04-19 08:04:07 ----D---- C:\WINDOWS\system32\DriverStore
2016-04-18 11:33:08 ----D---- C:\WINDOWS\CbsTemp
2016-04-18 11:28:24 ----D---- C:\WINDOWS\system32\MRT
2016-04-18 11:13:59 ----A---- C:\WINDOWS\system32\MRT.exe
2016-04-18 11:05:45 ----D---- C:\Program Files\Common Files
2016-04-18 11:05:39 ----RSD---- C:\WINDOWS\Fonts
2016-04-18 11:05:34 ----D---- C:\Program Files (x86)\Common Files
2016-04-18 11:04:46 ----RD---- C:\Program Files (x86)
2016-04-18 10:28:44 ----D---- C:\WINDOWS\Tasks
2016-04-18 10:28:44 ----D---- C:\WINDOWS\system32\Tasks
2016-04-18 10:15:38 ----D---- C:\Users\Matty\AppData\Roaming\Seznam.cz
2016-04-18 10:06:34 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-04-18 09:57:36 ----HD---- C:\WINDOWS\system32\GroupPolicy
2016-04-16 14:20:20 ----D---- C:\Program Files (x86)\Dropbox
2016-04-14 01:45:09 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-04-13 19:00:34 ----D---- C:\WINDOWS\system32\catroot2
2016-04-06 20:32:08 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-04-06 10:08:02 ----D---- C:\WINDOWS\system32\NDF
2016-04-06 09:55:46 ----D---- C:\Users\Matty\AppData\Roaming\uTorrent
2016-04-03 17:15:46 ----D---- C:\WINDOWS\Minidump

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-08-09 644968]
R0 IntelHSWPcc;IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [2013-08-06 74344]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2015-09-23 841944]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2015-09-23 244544]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-07-13 31560]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 QMUdisk;tencent QMUdisk; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QMUdisk64.sys [2016-03-02 184536]
R1 SRepairDrv;SRepairDrv; \??\C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\SRepairDrv [2016-04-19 168568]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 plctrl;plctrl; \??\C:\Program Files\ASUS\P4G\plctrl.sys [2013-08-29 14136]
R2 QQSysMonX64;QQSysMonX64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQSysMonX64.sys [2016-04-18 127800]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R2 TAOAccelerator;Tencent TAOAccelerator driver.; \??\C:\WINDOWS\system32\Drivers\TAOAccelerator64.sys [2016-04-18 99640]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2013-04-17 17152]
R3 AMPPAL;@oem19.inf,%AMPPAL.SVCDESC%;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\WINDOWS\System32\drivers\AMPPAL.sys [2013-05-21 165344]
R3 ATP;@oem18.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2015-08-23 100776]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-03-29 84992]
R3 HIDSwitch;@oem34.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2015-05-13 19976]
R3 ibtusb;@oem35.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2015-07-14 263952]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-12-19 7858088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-08-21 3591000]
R3 kbfiltr;@oem6.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-02 14992]
R3 MEIx64;@oem22.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-06-23 64624]
R3 mfeaack;McAfee Inc. mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [2015-09-23 415976]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2015-09-23 351120]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2015-09-23 497888]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2015-10-30 3485696]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-07-13 11139216]
R3 rt640x64;@oem38.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-08 895256]
R3 RTSPER;@oem40.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-07-08 759552]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2015-09-23 82072]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2015-10-30 165376]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-03-29 112640]
S3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2015-10-30 36864]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-03-29 954368]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-31 117248]
S3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2015-09-23 80760]
S3 dg_ssudbus;@oem33.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-08 122160]
S3 FTDIBUS;@oem32.inf,%SvcDesc%;USB Serial Converter Driver; C:\WINDOWS\system32\drivers\ftdibus.sys [2016-02-01 110912]
S3 FTSER2K;@oem23.inf,%SvcDesc%;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2016-01-13 95168]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IntcDAud;@oem16.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-09-05 449528]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2014-06-20 181704]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 181248]
S3 ssudmdm;@oem36.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-12-08 214832]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-24 81088]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2013-01-15 107320]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\P4G\InsOnSrv.exe [2013-08-29 277120]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [2012-12-19 72192]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 BrcmSetSecurity;BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [2013-07-26 283296]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-12-19 373160]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-06-23 131544]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-08-16 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-06-23 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-06-23 366552]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2015-10-21 378848]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2015-09-21 256840]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-07-13 937616]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-05-16 1826592]
R2 OneSyncSvc_4d1f7;Hostitel synchronizace_4d1f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 QQPCRTP;QQPCMgr RTP Service; C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCRTP.exe [2016-04-18 297608]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_4d1f7;Data kontaktů_4d1f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 TAOFrame;TAOFrame; C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TAOFrame.exe [2016-04-18 293728]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-02 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-21 154440]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2d700;Hostitel synchronizace_2d700; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_341db;Hostitel synchronizace_341db; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3e2a8;Hostitel synchronizace_3e2a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3edc5;Hostitel synchronizace_3edc5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_48ca4;Hostitel synchronizace_48ca4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_50340;Hostitel synchronizace_50340; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_52840;Hostitel synchronizace_52840; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_60cbf;Hostitel synchronizace_60cbf; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_66e03;Hostitel synchronizace_66e03; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_68441;Hostitel synchronizace_68441; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 QQRepaircd2;QQRepaircd2; C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\QQRepaircd2 [2016-04-19 136512]
S2 QQRepairFixSVC;QQRepairFixSVC; C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\QQRepairFixSVC [2016-04-19 136512]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-12-19 300968]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-02 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-21 154440]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2d700;Služba zasílání zpráv_2d700; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_341db;Služba zasílání zpráv_341db; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3e2a8;Služba zasílání zpráv_3e2a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_48ca4;Služba zasílání zpráv_48ca4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4d1f7;Služba zasílání zpráv_4d1f7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_50340;Služba zasílání zpráv_50340; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_52840;Služba zasílání zpráv_52840; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_60cbf;Služba zasílání zpráv_60cbf; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_66e03;Služba zasílání zpráv_66e03; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_68441;Služba zasílání zpráv_68441; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2d700;Data kontaktů_2d700; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_341db;Data kontaktů_341db; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3e2a8;Data kontaktů_3e2a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_48ca4;Data kontaktů_48ca4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_50340;Data kontaktů_50340; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_52840;Data kontaktů_52840; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_60cbf;Data kontaktů_60cbf; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_66e03;Data kontaktů_66e03; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_68441;Data kontaktů_68441; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-02-04 835152]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2015-09-21 233680]

-----------------EOF-----------------

ahoj
1. vycisti PC s ADWCleanerom
2. vloz log FRST

Pc mě vybídl k restartu a po spuštění se log neotevřel, je to tehle log?

# AdwCleaner v5.112 - Log soubor vytvořen 19/04/2016 o 10:24:16
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-17.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Jméno uživatele : Matty - EMWENSUNBLOOM
# Spuštěno z : C:\Users\Matty\Downloads\adwcleaner_5.112.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****

[-] Služba smazáno : QQPCRTP
[-] Služba smazáno : TAOAccelerator
[-] Služba smazáno : TSDefenseBt
[-] Služba smazáno : TSSysKit
[-] Služba smazáno : QMUdisk
[-] Služba smazáno : TS888x64
[-] Služba smazáno : QQSysMonX64
[-] Služba smazáno : TSCPM
[-] Služba smazáno : TFsFlt
[-] Služba smazáno : TAOFrame
[-] Služba smazáno : TAOKernelDriver
[-] Služba smazáno : UCBrowserSvc
[-] Služba smazáno : SRepairDrv
[-] Služba smazáno : QQRepairFixSVC

***** [ Složky ] *****

[#] Složka smazáno : C:\Program Files (x86)\tencent
[-] Složka smazáno : C:\Program Files (x86)\Winsere
[-] Složka smazáno : C:\Program Files (x86)\WinTaske
[-] Složka smazáno : C:\Program Files (x86)\Common Files\tencent
[#] Složka smazáno : C:\Program Files\Common Files\tencent
[#] Složka smazáno : C:\ProgramData\tencent
[-] Složka smazáno : C:\ProgramData\TXQMPC
[#] Složka smazáno : C:\ProgramData\Application Data\tencent
[-] Složka smazáno : C:\Users\Matty\AppData\Local\Temp\tencent
[-] Složka smazáno : C:\Users\Matty\AppData\Local\VirtualStore\Program Files (x86)\tencent
[-] Složka smazáno : C:\Users\Matty\AppData\Local\VirtualStore\ProgramData\Application Data\tencent
[-] Složka smazáno : C:\Users\Matty\AppData\Roaming\tencent
[-] Složka smazáno : C:\Users\Matty\AppData\Roaming\vnlgp
[-] Složka smazáno : C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
[-] Složka smazáno : C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\tencent

***** [ Soubory ] *****

[-] Soubor smazáno : C:\WINDOWS\SysNative\drivers\TAOAccelerator64.sys
[-] Soubor smazáno : C:\WINDOWS\SysNative\drivers\TAOKernel64.sys
[#] Soubor smazáno : C:\WINDOWS\SysNative\drivers\TFsFltX64.sys
[-] Soubor smazáno : C:\WINDOWS\SysWOW64\SearchProtectService.exe
[-] Soubor smazáno : C:\WINDOWS\SysWOW64\drivers\TsFltMgr.sys
[-] Soubor smazáno : C:\WINDOWS\SysWOW64\drivers\TS888x64.sys

***** [ DLLs ] *****


***** [ Zástupci ] *****


***** [ Naplánované úkoly ] *****


***** [ Registr ] *****

[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
[-] Klávesa smazáno : HKLM\SOFTWARE\MozillaPlugins\@qq.com/QQPCMgr
[-] Klávesa smazáno : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP
[-] Klávesa smazáno : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP
[-] Klávesa smazáno : HKEY_CLASSES_ROOT\AllFilesystemObjects\shellex\ContextMenuHandlers\QMContextUninstall
[-] Klávesa smazáno : HKEY_CLASSES_ROOT\Folder\ShellEx\ContextMenuHandlers\QMContextUninstall
[-] Klávesa smazáno : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.qq.qmchext
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\QMContextScan
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\QMContextScan.DLL
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\QMContextUninstall.DLL
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\QMContextScan
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AndroidPopup.AndroidServer
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AndroidPopup.AndroidServer.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\metnsd
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\qmbfile
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\QMContextScan.QMContextScanMenu
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\QMContextScan.QMContextScanMenu.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\QMContextUninstall.QMContextUninstallMenu
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\QMContextUninstall.QMContextUninstallMenu.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\qmgcfiles
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\qpakfile
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\QQPCMgr.qbox
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\speedupmypc
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\{1E9BD312-7C8C-4422-906D-897F6D7714F2}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\{7A30415C-ABEE-4674-B64B-4CA145EEB0CA}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-86DB50A2FD64}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{63332668-8CE1-445D-A5EE-25929176714E}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{754DF2CE-51E8-4895-B53C-6381418B84AE}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{EC0FA563-E0F2-406F-8659-1E728458A91E}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{88260EA6-BC91-42DF-ABEF-4A683E8A3C23}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{4C097DF1-0716-4FA1-84A9-025BC1E7B03F}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{29B6CFD5-0064-411A-8C42-9890C83F9921}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{E52EB753-1F56-4DF7-BE53-2C314AC5F8A1}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\SOFTWARE\Classes\CLSID\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{357D32FC-F0AE-4B37-B36F-D44AA31496F5}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{80B3B43F-7508-4627-BE66-00FB9AE5EE72}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{D4801E96-E7A1-45F6-B124-7A36DFB40B81}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{E52EB753-1F56-4DF7-BE53-2C314AC5F8A1}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{5A83D7C9-4A14-4000-BC05-389268238753}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{35627C7C-DB28-4772-9A6F-7607FFCBF9FF}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{445E3964-15B0-472A-95F4-6242DD2EA066}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{573F9869-D92C-4B7E-A9C3-F042278D5078}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{593BE60A-1C6A-44F9-946D-A5EAB2D53511}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{C049F583-D724-4BAB-8F47-F13BCA41B808}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E727987-C8EA-44DA-8749-310C0FBE3C3E}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{29B6CFD5-0064-411A-8C42-9890C83F9921}
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [{63332668-8CE1-445D-A5EE-25929176714E}]
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [{754DF2CE-51E8-4895-B53C-6381418B84AE}]
[-] Klávesa smazáno : HKCU\Software\IM
[-] Klávesa smazáno : HKCU\Software\VIS
[-] Klávesa smazáno : HKLM\SOFTWARE\Uniblue
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\SearchModule
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vnlgp
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Obnoveno : HKU\S-1-5-21-1258968961-4158239584-3575725969-1002\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{E451B1C1-7987-46BA-A551-1D1D5DE03EDD}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{67722B8A-2F19-4D1C-A929-FF1A42E971DA}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{E404FF2E-4496-4BDE-A1D1-EE8424285BEF}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{328621A9-E539-4818-B539-F4C667E60CBC}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{20DA593D-A7D1-4BD3-812B-28F7224929D2}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{4CB3B45E-3755-47EF-BB8E-747843B0FED3}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{C7B2AD5F-FCCB-44FA-8BD0-265466FCAF3A}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{F075EC55-307A-4253-BC62-96A662B59FFC}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{5115E0F9-9682-496B-A318-B6C24FF78DCA}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{4B546A06-E04D-40EC-92D9-42920AF74FFF}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{CBA5BB42-B7FD-4159-B416-81D930616E02}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{4832B13F-664A-40A2-8DC9-A221E2181546}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{07F5CDFF-6C6C-45CD-A299-F367E0D03801}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{D90DAEF8-CB61-4B77-BF26-28D0CFC5BB10}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{BA9F59DB-797E-41CF-9C71-D6A8EAE94F6E}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{61248F19-031D-4E0D-9788-6E32EA268954}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{4F9920FE-4E18-4D76-BBD9-A00A52137FE4}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{C6C5F5F4-1477-43D5-813A-2394B4073A35}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{7876367D-F0DF-45DD-9C9C-8FB4CE06D139}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{8CE47A75-2E8C-48C5-80B3-1AE18AC5EEE6}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{8308D9E3-F493-4706-864B-7D6035F06A71}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{EE244674-DF8B-46E4-B2F4-3C6DC26818C0}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{9A2E4088-DD97-48CD-B6CB-2C9204A66895}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{407BA42F-9258-4EF5-A384-32471D74735F}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{913B4C3F-98F4-43BA-8603-229D88E7BD6D}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{4DFEC63D-085E-406C-855D-A30EC86EAA44}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{525AF481-AC42-4A29-86A5-06EBEEDE010C}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{119A984E-2813-4E0D-A044-4911CF1B9B71}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{FBA1FF22-4AE1-4762-8599-90F84C3B05B2}]
[-] Hodnota smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [apphide]
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [apphide]
[#] Hodnota smazáno : HKU\S-1-5-21-1258968961-4158239584-3575725969-1002\Software\Microsoft\Windows\CurrentVersion\Run [apphide]
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [pcmgr]
[-] Hodnota smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vnlgp]

***** [ Webové prohlížeče ] *****


*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [12928 bytes] - [19/04/2016 10:24:16]
C:\AdwCleaner\AdwCleaner[S1].txt - [12772 bytes] - [19/04/2016 10:22:10]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [13076 bytes] ##########

ano je to ono - pristup k bodu 2

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:18-04-2016
Ran by Matty (administrator) on EMWENSUNBLOOM (19-04-2016 11:09:56)
Running from C:\Users\Matty\Downloads
Loaded Profiles: UpdatusUser & Matty (Available Profiles: UpdatusUser & Matty)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe" -- "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Intel Corporation) C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13650648 2013-08-21] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [402344 2015-12-19] ()
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1804432 2015-11-17] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-05-01] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2013-08-27] (ASUS)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23248560 2016-04-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [ QQPCTray] => "C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QQPCTRAY.EXE" /regrun /qqrepair
HKU\S-1-5-21-1258968961-4158239584-3575725969-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-1258968961-4158239584-3575725969-1002\...\Run: [uTorrent] => C:\Users\Matty\AppData\Roaming\uTorrent\uTorrent.exe [2094080 2016-03-05] (BitTorrent Inc.)
HKU\S-1-5-21-1258968961-4158239584-3575725969-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-1258968961-4158239584-3575725969-1002\...\Run: [C] => C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol [402 2016-04-18] ()
HKU\S-1-5-21-1258968961-4158239584-3575725969-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Matty\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Matty\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Matty\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2015-12-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\QMGCShellExt64.dll No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.30.dll [2016-04-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Matty\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Matty\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Matty\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2015-12-31] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e491289a-4d5e-409e-b5f5-bdb0392951a4}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e5feae1d-b9d3-4104-a4f4-0a73601d93c4}: [DhcpNameServer] 10.0.0.138
ManualProxies:

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-1258968961-4158239584-3575725969-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131054399837189820&GUID=AFADEE61-1FC9-4FB8-A5B9-8B52C7AA287B
HKU\S-1-5-21-1258968961-4158239584-3575725969-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
URLSearchHook: [S-1-5-21-1258968961-4158239584-3575725969-1002] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKU\S-1-5-21-1258968961-4158239584-3575725969-1002 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1258968961-4158239584-3575725969-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: 电脑管家网页防火墙 -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TSWebMon64.dat => No File

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-06-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-06-23] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-21] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Profile 1 -> hxxp://search.conduit.com/?gd=&ctid=CT3310393&octid=EB_ORIGINAL_CTID&ISID=MB396E127-5A90-47A2-80C4-ABE63E79D3A4&SearchSource=55&CUI=&UM=5&UP=SPC46D38E7-60C0-49D7-9EF4-980D4C6E8172&SSPV=
CHR StartupUrls: Profile 1 -> "hxxp://search.conduit.com/?gd=&ctid=CT3310393&octid=EB_ORIGINAL_CTID&ISID=MB396E127-5A90-47A2-80C4-ABE63E79D3A4&SearchSource=55&CUI=&UM=5&UP=SPC46D38E7-60C0-49D7-9EF4-980D4C6E8172&SSPV=","hxxp://www.google.com/","hxxp://www.mystartsea ... 1483314833"
CHR Profile: C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Prezentace Google) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-02]
CHR Extension: (Disk Google) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-02]
CHR Extension: (YouTube) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-02]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\elioihkkcdgakfbahdoddophfngopipi [2016-02-25]
CHR Extension: (Tabulky Google) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-04-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Matty\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-02]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [283296 2013-07-26] (Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-02] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-02] (Dropbox, Inc.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373160 2015-12-19] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-06-23] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-08-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-06-23] (Intel Corporation)
S4 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [233680 2015-09-21] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [378848 2015-10-21] (McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [256840 2015-09-21] (McAfee, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 QQPMAndroidServer; "C:\Users\Matty\AppData\Roaming\Tencent\AndroidServer\1.0.0.278\AndroidDaemon.exe" [X]
S2 QQRepaircd2; "C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\QQRepaircd2" [X]
S3 TAOFrame; "C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TAOFrame.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [100776 2015-08-23] (ASUS Corporation)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-10-30] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-10-30] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [80760 2015-09-23] (McAfee, Inc.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [263952 2015-07-14] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [74344 2013-08-06] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [415976 2015-09-23] (McAfee, Inc.)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-06-20] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [351120 2015-09-23] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [82072 2015-09-23] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [497888 2015-09-23] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [841944 2015-09-23] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [244544 2015-09-23] (McAfee, Inc.)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3485696 2015-10-30] (Intel Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-07-08] (Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [759552 2015-07-08] (Realsil Semiconductor Corporation)
S1 SRepairDrv; \??\C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\SRepairDrv [168568 2016-04-19] ()
R1 UCGuard; C:\Windows\System32\DRIVERS\ucguard.sys [80768 2016-03-28] (Huorong Borui (Beijing) Technology Co., Ltd.)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [206744 2013-06-20] (Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S1 TSDefenseBt; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TSDefenseBT64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-19 11:09 - 2016-04-19 11:10 - 00022610 _____ C:\Users\Matty\Downloads\FRST.txt
2016-04-19 11:09 - 2016-04-19 11:09 - 02375680 _____ (Farbar) C:\Users\Matty\Downloads\FRST64.exe
2016-04-19 11:09 - 2016-04-19 11:09 - 00000000 ____D C:\FRST
2016-04-19 10:56 - 2016-04-19 10:56 - 21171311 _____ C:\Users\Matty\Downloads\CF-Auto-Root-hllte-hlltexx-smn7505.zip
2016-04-19 10:33 - 2016-04-19 10:33 - 00000000 ____D C:\ProgramData\TXQMPC
2016-04-19 10:24 - 2016-04-19 10:24 - 03683904 _____ C:\Users\Matty\Downloads\adwcleaner_5.112 (1).exe
2016-04-19 10:21 - 2016-04-19 10:24 - 00000000 ____D C:\AdwCleaner
2016-04-19 10:17 - 2016-04-19 10:21 - 03683904 _____ C:\Users\Matty\Downloads\adwcleaner_5.112.exe
2016-04-19 09:15 - 2016-04-19 09:17 - 00000000 ____D C:\Program Files\trend micro
2016-04-19 09:15 - 2016-04-19 09:15 - 00000000 ____D C:\rsit
2016-04-19 09:14 - 2016-04-19 09:14 - 01222144 _____ C:\Users\Matty\Downloads\RSITx64.exe
2016-04-19 09:09 - 2016-04-19 09:09 - 00001508 _____ C:\Users\Public\Desktop\UC超级返.lnk
2016-04-19 09:00 - 2016-04-19 09:00 - 07335936 _____ C:\Users\Matty\Downloads\boot n7505.img
2016-04-19 08:44 - 2016-04-19 10:34 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-04-19 08:42 - 2016-04-19 09:09 - 00000000 ____D C:\Users\Matty\Desktop\mbar
2016-04-19 08:41 - 2016-04-19 08:41 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Matty\Downloads\mbar-1.09.3.1001.exe
2016-04-19 08:20 - 2016-04-19 08:20 - 00731136 _____ C:\Users\Matty\Downloads\avenger.exe
2016-04-19 08:16 - 2016-04-19 08:16 - 05660069 _____ (Swearware) C:\Users\Matty\Downloads\ComboFix.exe
2016-04-19 08:11 - 2016-04-19 08:11 - 00001617 _____ C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk
2016-04-19 08:11 - 2016-04-19 08:11 - 00001587 _____ C:\Users\Matty\Desktop\UC浏览器.lnk
2016-04-19 08:11 - 2016-04-19 08:11 - 00000000 ____D C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC浏览器
2016-04-19 07:49 - 2016-04-19 07:49 - 00000000 ____D C:\ProgramData\KingSoft
2016-04-18 11:26 - 2016-04-19 09:41 - 00000000 ____D C:\Users\Matty\Desktop\mobil všechno
2016-04-18 11:05 - 2016-04-18 11:05 - 00087864 ____N (电脑管家) C:\WINDOWS\system32\Drivers\TFsFltX64.sys
2016-04-18 11:04 - 2016-04-19 10:34 - 00000000 ____D C:\ProgramData\Tencent
2016-04-18 11:04 - 2016-04-19 10:26 - 00000000 ____D C:\Users\Matty\AppData\Roaming\Tencent
2016-04-18 11:04 - 2016-04-18 11:04 - 00000000 ____D C:\Program Files (x86)\Tencent
2016-04-18 10:28 - 2016-04-19 10:31 - 00000484 _____ C:\WINDOWS\Tasks\UCBrowserUpdater.job
2016-04-18 10:28 - 2016-04-18 10:28 - 00003502 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdater
2016-04-18 10:28 - 2016-04-18 10:28 - 00000000 ____D C:\Users\Matty\AppData\Local\UCBrowser
2016-04-18 10:28 - 2016-03-28 14:46 - 00080768 _____ (Huorong Borui (Beijing) Technology Co., Ltd.) C:\WINDOWS\system32\Drivers\ucguard.sys
2016-04-18 10:27 - 2016-04-19 09:04 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-04-18 10:24 - 2016-04-19 08:12 - 00000000 ____D C:\Program Files (x86)\badu
2016-04-18 10:14 - 2016-04-18 10:15 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-04-18 10:13 - 2016-04-18 10:13 - 00000000 ____D C:\Users\Matty\AppData\Roaming\NVIDIA
2016-04-18 10:07 - 2016-04-18 10:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-04-18 10:03 - 2016-04-18 10:03 - 04015219 _____ C:\Users\Matty\Downloads\BETA-SuperSU-v2.52.zip
2016-04-18 09:55 - 2016-04-18 10:25 - 00000000 ____D C:\Users\Matty\Downloads\Nová složka
2016-04-17 09:10 - 2016-04-02 05:26 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-04-17 09:10 - 2016-04-02 05:19 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-04-17 09:10 - 2016-04-02 05:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-17 09:10 - 2016-04-02 05:14 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-17 09:10 - 2016-04-02 05:09 - 01832448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-17 09:10 - 2016-04-02 05:07 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-17 09:10 - 2016-04-02 05:07 - 02158592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-17 09:10 - 2016-03-29 12:20 - 07474016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-17 09:10 - 2016-03-29 12:20 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-17 09:10 - 2016-03-29 12:18 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-04-17 09:10 - 2016-03-29 11:56 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-04-17 09:10 - 2016-03-29 11:37 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-17 09:10 - 2016-03-29 11:28 - 00696664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-17 09:10 - 2016-03-29 11:13 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-04-17 09:10 - 2016-03-29 11:11 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-17 09:10 - 2016-03-29 10:41 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-17 09:10 - 2016-03-29 10:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-04-17 09:10 - 2016-03-29 10:02 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-04-17 09:10 - 2016-03-29 10:01 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-17 09:10 - 2016-03-29 09:58 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-04-17 09:10 - 2016-03-29 09:58 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-17 09:10 - 2016-03-29 09:46 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-04-17 09:10 - 2016-03-29 09:36 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-04-17 09:10 - 2016-03-29 09:34 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-04-17 09:10 - 2016-03-29 09:20 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-04-17 09:10 - 2016-03-29 09:19 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-04-17 09:10 - 2016-03-29 09:16 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-04-17 09:10 - 2016-03-29 09:15 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-04-17 09:10 - 2016-03-29 09:15 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-17 09:10 - 2016-03-29 09:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-04-17 09:10 - 2016-03-29 09:14 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-17 09:10 - 2016-03-29 09:12 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-04-17 09:10 - 2016-03-29 09:12 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-04-17 09:10 - 2016-03-29 09:12 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-04-17 09:10 - 2016-03-29 09:10 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-17 09:10 - 2016-03-29 09:10 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-04-17 09:10 - 2016-03-29 09:07 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-04-17 09:10 - 2016-03-29 09:05 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-17 09:10 - 2016-03-29 09:02 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-04-17 09:10 - 2016-03-29 09:02 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-04-17 09:10 - 2016-03-29 09:00 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-04-17 09:10 - 2016-03-29 08:42 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-17 09:10 - 2016-03-29 08:37 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-04-17 09:10 - 2016-03-29 08:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-04-17 09:10 - 2016-03-29 08:37 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-17 09:10 - 2016-03-29 08:36 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-04-17 09:10 - 2016-03-29 08:32 - 01731584 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-17 09:10 - 2016-03-29 08:32 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-04-17 09:10 - 2016-03-29 08:31 - 02275328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-04-17 09:10 - 2016-03-29 08:31 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-04-17 09:10 - 2016-03-29 08:30 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-04-17 09:10 - 2016-03-29 08:28 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-04-17 09:10 - 2016-03-29 08:27 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-04-17 09:10 - 2016-03-29 08:26 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-17 09:10 - 2016-03-29 08:19 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-17 09:10 - 2016-03-29 08:05 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-04-17 09:10 - 2016-03-29 08:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-04-17 09:10 - 2016-03-29 08:05 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-17 09:10 - 2016-03-29 08:05 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-17 09:10 - 2016-03-29 08:02 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-17 09:10 - 2016-03-29 08:01 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-04-17 09:10 - 2016-03-29 07:58 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-04-17 09:10 - 2016-03-29 07:56 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-17 09:10 - 2016-03-29 07:52 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-04-17 09:10 - 2016-03-29 07:51 - 22378496 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-17 09:10 - 2016-03-29 07:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-04-17 09:10 - 2016-03-29 07:49 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-04-17 09:10 - 2016-03-29 07:45 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-04-17 09:10 - 2016-03-29 07:43 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-04-17 09:10 - 2016-03-29 07:41 - 24602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-17 09:10 - 2016-03-29 07:41 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-17 09:10 - 2016-03-29 07:39 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-17 09:10 - 2016-03-29 07:38 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-17 09:10 - 2016-03-29 07:38 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-04-17 09:10 - 2016-03-29 07:37 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-17 09:10 - 2016-03-29 07:36 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-04-17 09:10 - 2016-03-29 07:27 - 07836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-17 09:10 - 2016-03-29 07:27 - 05662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-17 09:09 - 2016-04-02 06:13 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-04-17 09:09 - 2016-04-02 06:10 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-04-17 09:09 - 2016-04-02 06:10 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-17 09:09 - 2016-04-02 06:10 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-17 09:09 - 2016-04-02 05:30 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-17 09:09 - 2016-04-02 05:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-17 09:09 - 2016-04-02 05:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-04-17 09:09 - 2016-04-02 05:25 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-17 09:09 - 2016-04-02 05:25 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-04-17 09:09 - 2016-04-02 05:23 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-17 09:09 - 2016-04-02 05:23 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-04-17 09:09 - 2016-04-02 05:21 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-04-17 09:09 - 2016-04-02 05:15 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-17 09:09 - 2016-04-02 05:08 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-04-17 09:09 - 2016-04-02 05:03 - 04774912 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-04-17 09:09 - 2016-04-02 05:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-17 09:09 - 2016-03-29 12:23 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-04-17 09:09 - 2016-03-29 12:22 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-17 09:09 - 2016-03-29 12:22 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-17 09:09 - 2016-03-29 12:20 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-17 09:09 - 2016-03-29 12:20 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-17 09:09 - 2016-03-29 12:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-04-17 09:09 - 2016-03-29 12:11 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-04-17 09:09 - 2016-03-29 12:05 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-04-17 09:09 - 2016-03-29 12:02 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-17 09:09 - 2016-03-29 12:02 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-04-17 09:09 - 2016-03-29 11:28 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-04-17 09:09 - 2016-03-29 11:28 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-04-17 09:09 - 2016-03-29 11:25 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-04-17 09:09 - 2016-03-29 11:25 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-17 09:09 - 2016-03-29 11:19 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-04-17 09:09 - 2016-03-29 11:18 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-04-17 09:09 - 2016-03-29 11:17 - 00300104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-04-17 09:09 - 2016-03-29 11:11 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-04-17 09:09 - 2016-03-29 11:10 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-04-17 09:09 - 2016-03-29 11:09 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-04-17 09:09 - 2016-03-29 11:08 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-04-17 09:09 - 2016-03-29 11:08 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-04-17 09:09 - 2016-03-29 11:07 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-04-17 09:09 - 2016-03-29 10:44 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-04-17 09:09 - 2016-03-29 10:44 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-04-17 09:09 - 2016-03-29 10:41 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-04-17 09:09 - 2016-03-29 10:32 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-04-17 09:09 - 2016-03-29 10:26 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-04-17 09:09 - 2016-03-29 10:26 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-17 09:09 - 2016-03-29 10:26 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-04-17 09:09 - 2016-03-29 10:25 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-04-17 09:09 - 2016-03-29 10:24 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-04-17 09:09 - 2016-03-29 10:23 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-04-17 09:09 - 2016-03-29 10:21 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-04-17 09:09 - 2016-03-29 10:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-04-17 09:09 - 2016-03-29 10:16 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-04-17 09:09 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-17 09:09 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-17 09:09 - 2016-03-29 10:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-04-17 09:09 - 2016-03-29 10:07 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-17 09:09 - 2016-03-29 10:07 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-04-17 09:09 - 2016-03-29 10:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-04-17 09:09 - 2016-03-29 10:00 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-17 09:09 - 2016-03-29 10:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-04-17 09:09 - 2016-03-29 10:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-17 09:09 - 2016-03-29 09:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-17 09:09 - 2016-03-29 09:57 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-04-17 09:09 - 2016-03-29 09:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-17 09:09 - 2016-03-29 09:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-04-17 09:09 - 2016-03-29 09:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-04-17 09:09 - 2016-03-29 09:55 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-17 09:09 - 2016-03-29 09:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-04-17 09:09 - 2016-03-29 09:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-04-17 09:09 - 2016-03-29 09:54 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-17 09:09 - 2016-03-29 09:54 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-04-17 09:09 - 2016-03-29 09:53 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-17 09:09 - 2016-03-29 09:52 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-17 09:09 - 2016-03-29 09:51 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-04-17 09:09 - 2016-03-29 09:51 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-04-17 09:09 - 2016-03-29 09:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-04-17 09:09 - 2016-03-29 09:50 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-17 09:09 - 2016-03-29 09:50 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-17 09:09 - 2016-03-29 09:50 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-04-17 09:09 - 2016-03-29 09:50 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-17 09:09 - 2016-03-29 09:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-17 09:09 - 2016-03-29 09:49 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-04-17 09:09 - 2016-03-29 09:49 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-17 09:09 - 2016-03-29 09:48 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-17 09:09 - 2016-03-29 09:48 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-04-17 09:09 - 2016-03-29 09:46 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-04-17 09:09 - 2016-03-29 09:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-04-17 09:09 - 2016-03-29 09:42 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-04-17 09:09 - 2016-03-29 09:39 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-04-17 09:09 - 2016-03-29 09:38 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-17 09:09 - 2016-03-29 09:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-04-17 09:09 - 2016-03-29 09:36 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-04-17 09:09 - 2016-03-29 09:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-04-17 09:09 - 2016-03-29 09:35 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-04-17 09:09 - 2016-03-29 09:34 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-17 09:09 - 2016-03-29 09:34 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-04-17 09:09 - 2016-03-29 09:34 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-04-17 09:09 - 2016-03-29 09:33 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-04-17 09:09 - 2016-03-29 09:32 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-04-17 09:09 - 2016-03-29 09:32 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-04-17 09:09 - 2016-03-29 09:30 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-17 09:09 - 2016-03-29 09:30 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-17 09:09 - 2016-03-29 09:28 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-04-17 09:09 - 2016-03-29 09:27 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-04-17 09:09 - 2016-03-29 09:26 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-04-17 09:09 - 2016-03-29 09:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-04-17 09:09 - 2016-03-29 09:23 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-17 09:09 - 2016-03-29 09:23 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-17 09:09 - 2016-03-29 09:22 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-04-17 09:09 - 2016-03-29 09:21 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-17 09:09 - 2016-03-29 09:20 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-17 09:09 - 2016-03-29 09:20 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-04-17 09:09 - 2016-03-29 09:20 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-04-17 09:09 - 2016-03-29 09:19 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-17 09:09 - 2016-03-29 09:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-04-17 09:09 - 2016-03-29 09:18 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-04-17 09:09 - 2016-03-29 09:17 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-04-17 09:09 - 2016-03-29 09:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-17 09:09 - 2016-03-29 09:17 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-17 09:09 - 2016-03-29 09:16 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-04-17 09:09 - 2016-03-29 09:14 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-04-17 09:09 - 2016-03-29 09:14 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-04-17 09:09 - 2016-03-29 09:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-04-17 09:09 - 2016-03-29 09:11 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-04-17 09:09 - 2016-03-29 09:11 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-17 09:09 - 2016-03-29 09:11 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-04-17 09:09 - 2016-03-29 09:11 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-17 09:09 - 2016-03-29 09:11 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-04-17 09:09 - 2016-03-29 09:11 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-04-17 09:09 - 2016-03-29 09:09 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-17 09:09 - 2016-03-29 09:09 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-04-17 09:09 - 2016-03-29 09:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-04-17 09:09 - 2016-03-29 09:08 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-04-17 09:09 - 2016-03-29 09:08 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-04-17 09:09 - 2016-03-29 09:08 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-17 09:09 - 2016-03-29 09:07 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-17 09:09 - 2016-03-29 09:06 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-17 09:09 - 2016-03-29 09:06 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-04-17 09:09 - 2016-03-29 09:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-04-17 09:09 - 2016-03-29 09:05 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-04-17 09:09 - 2016-03-29 09:04 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-04-17 09:09 - 2016-03-29 09:03 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-04-17 09:09 - 2016-03-29 09:02 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-17 09:09 - 2016-03-29 09:00 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-04-17 09:09 - 2016-03-29 09:00 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-17 09:09 - 2016-03-29 09:00 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-17 09:09 - 2016-03-29 08:59 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-04-17 09:09 - 2016-03-29 08:59 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-17 09:09 - 2016-03-29 08:59 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-17 09:09 - 2016-03-29 08:56 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-04-17 09:09 - 2016-03-29 08:56 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-04-17 09:09 - 2016-03-29 08:55 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-17 09:09 - 2016-03-29 08:53 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-04-17 09:09 - 2016-03-29 08:53 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-04-17 09:09 - 2016-03-29 08:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-17 09:09 - 2016-03-29 08:52 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-04-17 09:09 - 2016-03-29 08:49 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-04-17 09:09 - 2016-03-29 08:48 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-04-17 09:09 - 2016-03-29 08:44 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-04-17 09:09 - 2016-03-29 08:43 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-04-17 09:09 - 2016-03-29 08:42 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-17 09:09 - 2016-03-29 08:42 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-17 09:09 - 2016-03-29 08:41 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-04-17 09:09 - 2016-03-29 08:40 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-04-17 09:09 - 2016-03-29 08:39 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-04-17 09:09 - 2016-03-29 08:39 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-17 09:09 - 2016-03-29 08:39 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-04-17 09:09 - 2016-03-29 08:38 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-04-17 09:09 - 2016-03-29 08:36 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-17 09:09 - 2016-03-29 08:35 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-04-17 09:09 - 2016-03-29 08:34 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-04-17 09:09 - 2016-03-29 08:34 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-04-17 09:09 - 2016-03-29 08:34 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-04-17 09:09 - 2016-03-29 08:34 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-04-17 09:09 - 2016-03-29 08:32 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-17 09:09 - 2016-03-29 08:32 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-04-17 09:09 - 2016-03-29 08:32 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-04-17 09:09 - 2016-03-29 08:32 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-04-17 09:09 - 2016-03-29 08:32 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-04-17 09:09 - 2016-03-29 08:32 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-04-17 09:09 - 2016-03-29 08:31 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-04-17 09:09 - 2016-03-29 08:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-04-17 09:09 - 2016-03-29 08:29 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-04-17 09:09 - 2016-03-29 08:29 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-04-17 09:09 - 2016-03-29 08:28 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-04-17 09:09 - 2016-03-29 08:27 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-04-17 09:09 - 2016-03-29 08:27 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-04-17 09:09 - 2016-03-29 08:27 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-04-17 09:09 - 2016-03-29 08:27 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-04-17 09:09 - 2016-03-29 08:23 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-04-17 09:09 - 2016-03-29 08:22 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-04-17 09:09 - 2016-03-29 08:17 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-04-17 09:09 - 2016-03-29 08:14 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-04-17 09:09 - 2016-03-29 08:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-04-17 09:09 - 2016-03-29 08:10 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-17 09:09 - 2016-03-29 08:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-04-17 09:09 - 2016-03-29 08:05 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-04-17 09:09 - 2016-03-29 08:05 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-04-17 09:09 - 2016-03-29 08:04 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-17 09:09 - 2016-03-29 08:04 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-17 09:09 - 2016-03-29 08:01 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-04-17 09:09 - 2016-03-29 08:00 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-04-17 09:09 - 2016-03-29 07:45 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-04-17 09:09 - 2016-03-29 07:43 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-04-17 09:09 - 2016-03-29 07:35 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-04-17 09:09 - 2016-03-29 07:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-04-17 09:09 - 2016-03-29 07:27 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-04-17 09:09 - 2016-03-29 07:26 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-17 09:09 - 2016-03-29 07:26 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-17 09:09 - 2016-03-29 07:25 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-04-17 09:09 - 2016-03-29 07:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-04-17 09:09 - 2016-03-29 07:21 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-16 14:20 - 2016-04-16 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-04-07 10:36 - 2016-04-07 10:36 - 01238509 _____ C:\Users\Matty\Downloads\manual_set_top_box_EVO4_T (1).pdf
2016-04-07 09:49 - 2016-04-07 09:49 - 01238509 _____ C:\Users\Matty\Downloads\manual_set_top_box_EVO4_T.pdf
2016-04-04 10:57 - 2016-04-04 11:11 - 562575242 ____R C:\Users\Matty\Downloads\Ano,-šéfe!-VI-(2)----3.9.-2015.avi
2016-04-04 10:54 - 2016-04-04 11:06 - 571778378 ____R C:\Users\Matty\Downloads\Ano,-šéfe!-VI-(3)---10.9.-2015.avi
2016-04-04 10:51 - 2016-04-04 11:07 - 551367310 ____R C:\Users\Matty\Downloads\Ano,-šéfe!-VI-(4)--17.9.-2015.avi
2016-04-04 10:38 - 2016-04-04 10:54 - 552293686 ____R C:\Users\Matty\Downloads\Ano,-šéfe!-VI-(5)--24.9.-2015.avi
2016-04-04 10:37 - 2016-04-04 10:50 - 551404652 ____R C:\Users\Matty\Downloads\Ano,-šéfe!-VI-(6)--1.10.-2015.avi
2016-04-03 17:15 - 2016-04-03 17:16 - 00268068 _____ C:\WINDOWS\Minidump\040316-31406-01.dmp
2016-04-02 10:21 - 2016-04-02 10:21 - 00768894 _____ C:\Users\Matty\Downloads\nvod jak nastavit zazen ZCOMAX.pdf
2016-03-30 20:07 - 2016-04-04 11:06 - 550036298 ____R C:\Users\Matty\Downloads\Ano,-šéfe!-VI-(7)---8.10.-2015.avi
2016-03-30 20:07 - 2016-04-04 11:03 - 672110992 ____R C:\Users\Matty\Downloads\Ano, šéfe! VI (8) - Restaurace Pod Lékárnou - Židlochovice.mkv
2016-03-30 19:25 - 2016-04-04 10:38 - 1359172132 ____R C:\Users\Matty\Downloads\Ano, šéfe! S06E11 - Bouda v Obřím dole.ts
2016-03-30 19:20 - 2016-04-04 10:37 - 1363444996 ____R C:\Users\Matty\Downloads\Ano, šéfe! S06E12 - Motorest Tereza.ts
2016-03-30 19:09 - 2016-04-04 10:31 - 1356762724 ____R C:\Users\Matty\Downloads\Ano, šéfe! S06E13 - Wellness relax areál.ts
2016-03-30 18:08 - 2016-04-04 10:57 - 1470598040 ____R C:\Users\Matty\Downloads\Ano.Sefe.S06E09.Vodaci.mkv
2016-03-30 18:05 - 2016-03-30 18:15 - 1046091765 ____R C:\Users\Matty\Downloads\Ano.Sefe.S06E01_Navraty.(1).mkv
2016-03-30 17:59 - 2016-04-04 10:25 - 1344945984 ____R C:\Users\Matty\Downloads\Ano, šéfe! S06E14 - Městské sály Teplice.ts
2016-03-30 17:59 - 2016-04-02 09:30 - 1313455410 ____R C:\Users\Matty\Downloads\Ano, šéfe! S06E15 - Klub AVU v Praze.AVI
2016-03-30 17:59 - 2016-03-30 19:24 - 1371074976 ____R C:\Users\Matty\Downloads\Ano, šéfe! S06E16 - Hotel Zámek Havířov (CZ)[WebRip][1080p].ts
2016-03-30 17:59 - 2016-03-30 19:08 - 705964628 ____R C:\Users\Matty\Downloads\Ano, šéfe! S06E17 - Slovenská Koliba Jasna (CZ)[WebRip].ts
2016-03-30 17:57 - 2016-03-30 19:03 - 558011206 ____R C:\Users\Matty\Downloads\Ano,-sefe!-VI--(6)--28.8.-2015.avi
2016-03-30 17:57 - 2016-03-30 17:57 - 00020434 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E09_Navraty_CZ_TvRip_.torrent
2016-03-30 17:57 - 2016-03-30 17:57 - 00014509 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E10_U_Hastrmana_CZ_TvRip_.torrent
2016-03-30 17:57 - 2016-03-30 17:57 - 00013983 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E17_Slovenska_Koliba_Jasna_CZ_WebRip_.torrent
2016-03-30 17:57 - 2016-03-30 17:57 - 00013590 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E16_Hotel_Zamek_Havirov_CZ_WebRip_1080p_.torrent
2016-03-30 17:57 - 2016-03-30 17:57 - 00013504 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E12_Motorest_Tereza_CZ_WebRip_1080p_.torrent
2016-03-30 17:57 - 2016-03-30 17:57 - 00013469 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E11_Bouda_v_Obrim_dole_CZ_WebRip_1080p_.torrent
2016-03-30 17:57 - 2016-03-30 17:57 - 00013430 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E13_Wellness_relax_areal_CZ_WebRip_1080p_.torrent
2016-03-30 17:57 - 2016-03-30 17:57 - 00013331 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E14_Mestske_saly_Teplice_CZ_WebRip_1080p_.torrent
2016-03-30 17:57 - 2016-03-30 17:57 - 00013025 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E15_Klub_AVU_v_Praze_CZ_WebRip_1080p_.torrent
2016-03-30 17:56 - 2016-03-30 17:56 - 00013329 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E08_Restaurace_Pod_Lekarnou_CZ_WebRip_.torrent
2016-03-30 17:56 - 2016-03-30 17:56 - 00011399 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E03_10_9_2015_CZ_WebRip_.torrent
2016-03-30 17:56 - 2016-03-30 17:56 - 00011219 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E02_CZ_WebRip_.torrent
2016-03-30 17:56 - 2016-03-30 17:56 - 00011137 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E01_CZ_WebRip_.torrent
2016-03-30 17:56 - 2016-03-30 17:56 - 00011018 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E05_CZ_WebRip_.torrent
2016-03-30 17:56 - 2016-03-30 17:56 - 00010997 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E06_CZ_WebRip_.torrent
2016-03-30 17:56 - 2016-03-30 17:56 - 00010997 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E04_CZ_WebRip_.torrent
2016-03-30 17:56 - 2016-03-30 17:56 - 00010978 _____ C:\Users\Matty\Downloads\[CzT]Ano_sefe_S06E07_CZ_TvRip_.torrent
2016-03-30 17:35 - 2016-03-30 19:19 - 1758520954 ____R C:\Users\Matty\Downloads\Burnt.2015.BRrip.x264.AC3.CZ-DaRe.avi
2016-03-30 17:34 - 2016-03-30 19:03 - 1682085166 ____R C:\Users\Matty\Downloads\Scouts Guide to the Zombie Apocalypse.avi
2016-03-30 17:34 - 2016-03-30 17:34 - 00017412 _____ C:\Users\Matty\Downloads\[CzT]Dokonaly_sef_Burnt_2015_CZ_.torrent
2016-03-30 17:34 - 2016-03-30 17:34 - 00016544 _____ C:\Users\Matty\Downloads\[CzT]Skautuv_pruvodce_zombie_apokalypsou_Scouts_Guide_to_the_Zombie_Apocalypse_2015_CZ_.torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-19 11:04 - 2016-01-02 17:59 - 00000934 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-04-19 10:47 - 2016-02-21 16:42 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-19 10:38 - 2015-12-27 11:48 - 00000073 _____ C:\Users\Matty\AppData\Roaming\sp_data.sys
2016-04-19 10:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-19 10:37 - 2016-01-30 22:32 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-19 10:37 - 2016-01-12 21:03 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-04-19 10:37 - 2016-01-02 18:10 - 00000000 ___RD C:\Users\Matty\Dropbox
2016-04-19 10:36 - 2016-02-21 16:42 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-19 10:36 - 2016-01-02 17:59 - 00000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-04-19 10:36 - 2015-12-31 15:38 - 00000000 __SHD C:\Users\Matty\IntelGraphicsProfiles
2016-04-19 10:36 - 2015-12-31 15:22 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-04-19 10:34 - 2015-12-31 15:35 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-19 10:33 - 2015-12-31 15:25 - 00000000 ____D C:\Users\Matty
2016-04-19 10:33 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-04-19 09:17 - 2015-12-31 15:36 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-19 09:17 - 2015-10-30 20:31 - 00751272 _____ C:\WINDOWS\system32\perfh005.dat
2016-04-19 09:17 - 2015-10-30 20:31 - 00150860 _____ C:\WINDOWS\system32\perfc005.dat
2016-04-19 09:17 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-04-19 09:10 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-04-19 08:44 - 2016-02-20 23:33 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-19 08:43 - 2016-02-20 23:32 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-04-19 08:15 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-19 08:11 - 2016-02-19 10:06 - 00000270 __RSH C:\Users\Matty\ntuser.pol
2016-04-19 08:07 - 2015-12-31 15:18 - 00206872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-19 08:06 - 2015-12-31 15:25 - 00000000 ____D C:\Users\UpdatusUser
2016-04-19 08:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-04-19 08:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-04-19 08:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-04-19 08:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-04-19 07:48 - 2016-02-19 11:29 - 00004208 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1487165B-79D1-4ED3-A0BD-E0975A6B6C68}
2016-04-18 11:33 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-18 11:28 - 2015-12-28 19:47 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-18 11:13 - 2015-12-28 19:47 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-18 11:05 - 2015-12-27 11:47 - 00000000 ____D C:\Users\Matty\AppData\Local\VirtualStore
2016-04-18 10:15 - 2016-02-04 19:58 - 00000000 ____D C:\Users\Matty\AppData\Roaming\Seznam.cz
2016-04-18 09:57 - 2016-02-04 20:23 - 00000270 __RSH C:\ProgramData\ntuser.pol
2016-04-18 09:57 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-04-18 09:47 - 2015-12-27 11:47 - 00000000 ____D C:\Users\Matty\AppData\Local\Packages
2016-04-16 14:20 - 2016-01-02 17:59 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-04-16 14:17 - 2016-01-02 17:58 - 00000000 ____D C:\Users\Matty\AppData\Local\Dropbox
2016-04-14 01:45 - 2015-12-29 05:59 - 00453280 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-13 18:53 - 2016-02-21 16:43 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-13 18:53 - 2016-02-21 16:43 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-06 20:32 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-06 20:32 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-06 10:08 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-04-06 09:55 - 2015-12-28 21:49 - 00000000 ____D C:\Users\Matty\AppData\Roaming\uTorrent
2016-04-04 10:22 - 2016-02-06 15:55 - 00000000 ____D C:\Users\Matty\AppData\LocalLow\uTorrent
2016-04-03 17:15 - 2016-01-26 12:03 - 00000000 ____D C:\WINDOWS\Minidump
2016-04-03 17:15 - 2016-01-26 12:02 - 949895300 _____ C:\WINDOWS\MEMORY.DMP

==================== Files in the root of some directories =======

2015-12-27 11:48 - 2016-04-19 10:38 - 0000073 _____ () C:\Users\Matty\AppData\Roaming\sp_data.sys
2016-01-02 17:38 - 2016-02-04 20:24 - 0007598 _____ () C:\Users\Matty\AppData\Local\resmon.resmoncfg
2015-12-31 15:21 - 2015-12-31 15:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-05-01 13:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-05-01 13:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-10-28 19:25 - 2013-10-28 19:25 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2013-10-28 19:23 - 2013-10-28 19:24 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
2013-10-28 19:22 - 2013-10-28 19:23 - 0000110 _____ () C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log

Some files in TEMP:
====================
C:\Users\Matty\AppData\Local\Temp\Browser_V5.6.11466.7_r_4714_(Build1603281525).exe
C:\Users\Matty\AppData\Local\Temp\libeay32.dll
C:\Users\Matty\AppData\Local\Temp\msvcr120.dll
C:\Users\Matty\AppData\Local\Temp\qqpcmgr_v10.5.15816.217_70557_Silence.exe
C:\Users\Matty\AppData\Local\Temp\set.exe
C:\Users\Matty\AppData\Local\Temp\Setup__15200_i1912367295_il11805.exe
C:\Users\Matty\AppData\Local\Temp\sqlite3.dll
C:\Users\Matty\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-04-19 08:26

==================== End of FRST.txt ============================

citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >> •Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Fix result of Farbar Recovery Scan Tool (x64) Version:18-04-2016
Ran by Matty (2016-04-19 11:31:57) Run:1
Running from C:\Users\Matty\Desktop
Loaded Profiles: UpdatusUser & Matty (Available Profiles: UpdatusUser & Matty)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

BHO: ????????? -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TSWebMon64.dat => No File
CHR HomePage: Profile 1 -> hxxp://search.conduit.com/?gd=&ctid=CT3 ... 8172&SSPV=
CHR StartupUrls: Profile 1 -> "hxxp://search.conduit.com/?gd=&ctid=CT3310393&octid=EB_ORIGINAL_CTID&ISID=MB396E127-5A90-47A2-80C4-ABE63E79D3A4&SearchSource=55&CUI=&UM=5&UP=SPC46D38E7-60C0-49D7-9EF4-980D4C6E8172&SSPV=","hxxp://www.google.com/","hxxp://www.mystartsea ... 1483314833"
S2 QQPMAndroidServer; "C:\Users\Matty\AppData\Roaming\Tencent\AndroidServer\1.0.0.278\AndroidDaemon.exe" [X]
S2 QQRepaircd2; "C:\Program Files (x86)\Tencent\QQPCMGR\Plugins\QQRepaircd2" [X]
S3 TAOFrame; "C:\Program Files (x86)\Tencent\QQPCMgr\10.5.15816.217\TAOFrame.exe" [X]
2016-04-19 09:09 - 2016-04-19 09:09 - 00001508 _____ C:\Users\Public\Desktop\UC???.lnk
2016-04-19 08:11 - 2016-04-19 08:11 - 00001617 _____ C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC???.lnk
2016-04-19 08:11 - 2016-04-19 08:11 - 00001587 _____ C:\Users\Matty\Desktop\UC???.lnk
2016-04-19 08:11 - 2016-04-19 08:11 - 00000000 ____D C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC???
2016-04-18 11:05 - 2016-04-18 11:05 - 00087864 ____N (????) C:\WINDOWS\system32\Drivers\TFsFltX64.sys
2016-04-18 11:04 - 2016-04-19 10:34 - 00000000 ____D C:\ProgramData\Tencent
2016-04-18 11:04 - 2016-04-19 10:26 - 00000000 ____D C:\Users\Matty\AppData\Roaming\Tencent
2016-04-18 11:04 - 2016-04-18 11:04 - 00000000 ____D C:\Program Files (x86)\Tencent



EmptyTemp:
Reboot:
Ends
*****************

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}" => key removed successfully
"HKCR\CLSID\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}" => key removed successfully
Chrome HomePage => removed successfully
Chrome StartupUrls => removed successfully
QQPMAndroidServer => service removed successfully
QQRepaircd2 => service removed successfully
TAOFrame => service removed successfully

=========== "C:\Users\Public\Desktop\UC???.lnk" ==========

C:\Users\Public\Desktop\UC超级返.lnk => moved successfully

========= End -> "C:\Users\Public\Desktop\UC???.lnk" ========


=========== "C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC???.lnk" ==========

C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC浏览器.lnk => moved successfully

========= End -> "C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC???.lnk" ========


=========== "C:\Users\Matty\Desktop\UC???.lnk" ==========

C:\Users\Matty\Desktop\UC浏览器.lnk => moved successfully

========= End -> "C:\Users\Matty\Desktop\UC???.lnk" ========


=========== "C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC???" ==========

not found

========= End -> "C:\Users\Matty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC???" ========

C:\WINDOWS\system32\Drivers\TFsFltX64.sys => moved successfully
C:\ProgramData\Tencent => moved successfully
C:\Users\Matty\AppData\Roaming\Tencent => moved successfully
C:\Program Files (x86)\Tencent => moved successfully
Ends => Error: No automatic fix found for this entry.
EmptyTemp: => 641.7 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 11:32:14 ====

restartuj PC a napis, ci je nejaky problem

Omlouvám se, musel jsem do práce, na pc se dostanu zase až zítra, po restartování pc zmizeli zástupci na ploše ale čínská aplikace tvářící se jako prohlížeč tam zůstala ..

Zopakuj kontrolu s adwcleanerom

Po kontrole a smazání adwcleanrem se mi podařilo "čínský prohlížeč" odinstalovat přes ovládací panely, doufám že kompletně, děkuji za pomoc, snad už bude vše ok

myslim, ze bude vsetko OK >> ide o odolny SW
rado sa stalo