VIRY.CZ

Dobrý den,
po restartu win 10 se mi nenačítá jeden profil, padá do dočasného režimu. Když se odhlásím a restartuji ze zamykací obrazovky, je to OK. U jiných profilů to nedělá. Můžete mi prosím zkontrolovat log, jestli neodhalíte chybu? Moc děkuji, log přikládám nadvakrát, má moc znaků.

Logfile of random's system information tool 1.09 (written by random/random)
Run by SNEK at 2017-01-14 11:59:54
Microsoft Windows 10 Pro
System drive C: has 562 GB (60%) free of 944 GB
Total RAM: 16364 MB (81% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:00:00, on 14.1.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe
C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Users\SNEK\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Users\SNEK\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\Keystatus.exe
C:\Users\SNEK\AppData\Local\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\SNEK.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Spyware Terminator 2015 Internet Guard - {82A76710-4F98-4957-92BE-99648A4E2475} - C:\PROGRA~2\SPYWAR~1\STINTE~1.DLL
O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [HP KEYBOARDx] "C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE"
O4 - HKLM\..\Run: [BATINDICATOR] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [ProductUpdater] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\SNEK\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\SNEK\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [HP Deskjet 3520 series (NET)] "C:\Program Files\hp\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN41G1G0VR05SZ:NW" -scfn "HP Deskjet 3520 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [BingSvc] C:\Users\SNEK\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/ ... 9578849227
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\WINDOWS\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: GoPro Device Detection Service (GoProDeviceDetectionService) - Unknown owner - C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler Group - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15410 bytes

======Listing Processes======

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-cca8d299-ff34-4ccc-95ae-dab9b845fdfb -SystemEventPortName:HostProcess-ab9391c7-a95f-49cd-9382-7884b43ced75 -IoCancelEventPortName:HostProcess-ebc19cd0-195d-4708-a029-8a6f9cca622e -NonStateChangingEventPortName:HostProcess-75df6aa7-7aae-4f21-9cda-e474972731db -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6d6cd26e-80c1-4670-ac8c-9f4115e91652 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe"
"C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
dashost.exe {53a6cb2e-5f12-4e83-8a031033d1beff73}
C:\WINDOWS\system32\DbxSvc.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
winlogon.exe
"dwm.exe"
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe"
"C:\Program Files\IDT\WDM\beats64.exe"
"C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe"
szndesktop.exe default start
"C:\Users\SNEK\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\hp\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN41G1G0VR05SZ:NW" -scfn "HP Deskjet 3520 series (NET)" -AutoStart 1
"C:\Users\SNEK\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\Keystatus.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{3AD05575-8857-4850-9277-11B85BDB8E09}
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 652 656 664 8192 660
"C:\Users\SNEK\AppData\Local\Mozilla Firefox\firefox.exe"
C:\WINDOWS\system32\AUDIODG.EXE 0x1d8
"C:\Users\SNEK\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job
C:\WINDOWS\tasks\HPCeeScheduleForSNEK.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-21 571456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82A76710-4F98-4957-92BE-99648A4E2475}]
Spyware Terminator 2015 Internet Guard - C:\PROGRA~2\SPYWAR~1\STINTE~2.DLL [2015-07-27 2013520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-06-09 1747272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-21 234560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{82A76710-4F98-4957-92BE-99648A4E2475}]
Spyware Terminator 2015 Internet Guard - C:\PROGRA~2\SPYWAR~1\STINTE~1.DLL [2015-07-27 1255248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"=c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
"SpywareTerminatorShield"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2015-07-27 3884368]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-02-17 2789248]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-02-17 1903344]
"BeatsOSDApp"=C:\Program Files\IDT\WDM\beats64.exe [2011-08-24 37888]
"GoPro Tray App"=C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [2016-12-02 866224]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\SNEK\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\SNEK\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"HP Deskjet 3520 series (NET)"=C:\Program Files\hp\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2012-10-17 2573416]
"BingSvc"=C:\Users\SNEK\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-11-12 144008]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2017-01-09 1407912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Garmin Lifetime Updater]
C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP KEYBOARDx"=C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE [2010-02-11 710656]
"BATINDICATOR"=C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe [2009-05-09 2068992]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-05-06 658424]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-11-16 9080768]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe []
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2017-01-06 26287016]
"ProductUpdater"=C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [2016-10-27 75776]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SystemEventsBroker]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"VIDC.I420"=msh263.drv
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.l3codecp"=l3codecp.acm
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.CFHD"=CFHD.dll

-----------------EOF-----------------

DRUHÁ ČÁST LOGU:

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-01-14 11:59:54 ----D---- C:\rsit
2017-01-13 15:59:41 ----D---- C:\Program Files (x86)\VulkanRT
2017-01-12 18:45:26 ----D---- C:\Users\SNEK\AppData\Roaming\GlarySoft
2017-01-12 18:45:16 ----D---- C:\Program Files (x86)\Glarysoft
2017-01-11 20:49:20 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-01-11 20:49:19 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-01-11 20:49:10 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-01-11 20:49:10 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-01-11 20:49:10 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-01-11 20:49:09 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2017-01-11 20:49:08 ----A---- C:\WINDOWS\SYSWOW64\mqmigplugin.dll
2017-01-11 20:49:03 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2017-01-11 20:49:00 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2017-01-11 20:48:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-01-11 20:48:58 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-01-11 20:48:57 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-01-11 20:48:57 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2017-01-11 20:48:56 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-01-11 20:48:56 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-01-11 20:48:56 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-01-11 20:48:56 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-01-11 20:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-01-11 20:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2017-01-11 20:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-01-11 20:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2017-01-11 20:48:55 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-01-11 20:48:55 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-01-11 20:48:55 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2017-01-11 20:48:55 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2017-01-11 20:48:54 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-01-11 20:48:54 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-01-11 20:48:54 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-01-11 20:48:54 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-01-11 20:48:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-01-11 20:48:53 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-01-11 20:48:53 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-01-11 20:48:53 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-01-11 20:48:53 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-01-11 20:48:53 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-01-11 20:48:50 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2017-01-11 20:48:50 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2017-01-11 20:48:50 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2017-01-11 20:48:49 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2017-01-11 20:48:49 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-01-11 20:48:49 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-01-11 20:48:49 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-01-11 20:48:49 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-01-11 20:48:49 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-01-11 20:48:49 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-01-11 20:48:48 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-01-11 20:48:48 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-01-11 20:48:46 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-01-11 20:48:46 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2017-01-11 20:48:46 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-01-11 20:48:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 20:48:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-01-11 20:48:43 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-01-11 20:48:43 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2017-01-11 20:48:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-01-11 20:48:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2017-01-11 20:48:42 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2017-01-11 20:48:42 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-01-11 20:48:41 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2017-01-11 20:48:41 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2017-01-11 20:48:41 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-01-11 20:48:41 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2017-01-11 20:48:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-11 20:48:40 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-01-11 20:45:30 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-01-11 20:45:13 ----A---- C:\WINDOWS\system32\wow64.dll
2017-01-11 20:45:13 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-01-11 20:45:13 ----A---- C:\WINDOWS\system32\winmde.dll
2017-01-11 20:45:13 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-01-11 20:45:12 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-01-11 20:45:12 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-01-11 20:45:12 ----A---- C:\WINDOWS\system32\win32k.sys
2017-01-11 20:45:11 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-01-11 20:45:11 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2017-01-11 20:45:10 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-01-11 20:45:10 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-01-11 20:45:10 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-01-11 20:45:10 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-01-11 20:45:10 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-01-11 20:45:10 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-01-11 20:45:09 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-01-11 20:45:09 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-01-11 20:45:09 ----A---- C:\WINDOWS\system32\usocore.dll
2017-01-11 20:45:09 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-01-11 20:45:08 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-01-11 20:45:08 ----A---- C:\WINDOWS\system32\twinui.dll
2017-01-11 20:45:08 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2017-01-11 20:45:07 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-01-11 20:45:07 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-01-11 20:45:06 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-01-11 20:45:06 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2017-01-11 20:45:06 ----A---- C:\WINDOWS\system32\SRH.dll
2017-01-11 20:45:06 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-01-11 20:45:06 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-01-11 20:45:06 ----A---- C:\WINDOWS\system32\certprop.dll
2017-01-11 20:45:05 ----A---- C:\WINDOWS\system32\shell32.dll
2017-01-11 20:45:05 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-01-11 20:45:05 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-01-11 20:45:05 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-01-11 20:45:04 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-01-11 20:45:04 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-01-11 20:45:04 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-01-11 20:45:04 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-01-11 20:45:04 ----A---- C:\WINDOWS\system32\cloudAP.dll
2017-01-11 20:45:04 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-01-11 20:45:03 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-01-11 20:45:03 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-01-11 20:45:03 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-11 20:45:00 ----A---- C:\WINDOWS\system32\WinSCard.dll
2017-01-11 20:45:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-01-11 20:44:59 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-01-11 20:44:59 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-01-11 20:44:58 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2017-01-11 20:44:58 ----A---- C:\WINDOWS\system32\provengine.dll
2017-01-11 20:44:58 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2017-01-11 20:44:58 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2017-01-11 20:44:55 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-01-11 20:44:54 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2017-01-11 20:44:52 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2017-01-11 20:44:52 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2017-01-11 20:44:52 ----A---- C:\WINDOWS\system32\mspaint.exe
2017-01-11 20:44:52 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2017-01-11 20:44:52 ----A---- C:\WINDOWS\system32\mqcmiplugin.dll
2017-01-11 20:44:50 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-01-11 20:44:50 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-01-11 20:44:50 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-01-11 20:44:50 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-01-11 20:44:50 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-01-11 20:44:50 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-01-11 20:44:49 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-01-11 20:44:47 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-01-11 20:44:47 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-01-11 20:44:46 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-01-11 20:44:43 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-01-11 20:44:43 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-01-11 20:44:43 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-01-11 20:44:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-01-11 20:44:37 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 20:44:36 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2017-01-11 20:44:36 ----A---- C:\WINDOWS\system32\fhcfg.dll
2017-01-11 20:44:32 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-01-11 20:44:32 ----A---- C:\WINDOWS\system32\D3D12.dll
2017-01-11 20:44:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-01-11 20:44:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-01-11 20:44:31 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-01-11 20:44:31 ----A---- C:\WINDOWS\system32\offlinesam.dll
2017-01-11 20:44:30 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-01-11 20:44:30 ----A---- C:\WINDOWS\system32\domgmt.dll
2017-01-11 20:44:30 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-01-11 20:44:28 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-01-11 20:44:28 ----A---- C:\WINDOWS\system32\cryptui.dll
2017-01-11 20:44:28 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2017-01-11 20:44:27 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-01-11 20:44:18 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-01-11 20:44:14 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-01-11 20:44:13 ----A---- C:\WINDOWS\system32\aclui.dll
2017-01-11 20:44:12 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-01-11 20:44:11 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-01-11 20:44:10 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-11 20:44:10 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-01-11 20:44:10 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-01-11 20:44:10 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2017-01-11 20:44:10 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-01-11 20:44:08 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-01-11 20:44:06 ----A---- C:\WINDOWS\system32\ClipUp.exe
2017-01-11 20:43:52 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-01-11 20:43:52 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2017-01-07 18:44:38 ----A---- C:\Users\SNEK\AppData\Roaming\DVDSubEdit.ini
2017-01-06 15:20:33 ----D---- C:\Users\SNEK\AppData\Roaming\AVS4YOU
2017-01-06 15:19:51 ----A---- C:\WINDOWS\SYSWOW64\msxml3a.dll
2017-01-06 15:19:50 ----D---- C:\ProgramData\AVS4YOU
2017-01-06 15:19:50 ----D---- C:\Program Files (x86)\AVS4YOU
2017-01-06 01:04:24 ----A---- C:\WINDOWS\system32\DbxSvc.exe
2017-01-06 00:48:58 ----A---- C:\WINDOWS\system32\drivers\dbx-stable.sys
2017-01-06 00:48:58 ----A---- C:\WINDOWS\system32\drivers\dbx-dev.sys
2017-01-06 00:48:58 ----A---- C:\WINDOWS\system32\drivers\dbx-canary.sys
2017-01-01 13:04:07 ----D---- C:\Users\SNEK\AppData\Roaming\JAM Software
2017-01-01 13:04:06 ----D---- C:\Program Files (x86)\JAM Software
2016-12-24 19:25:41 ----D---- C:\Users\SNEK\AppData\Roaming\GoPro
2016-12-24 19:24:39 ----D---- C:\Program Files (x86)\GoPro
2016-12-24 19:24:39 ----D---- C:\Program Files (x86)\CineForm
2016-12-24 19:24:21 ----D---- C:\Program Files\GoPro
2016-12-24 19:24:18 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2016-12-24 19:24:17 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2016-12-24 19:24:17 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2016-12-24 19:24:17 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2016-12-23 08:02:53 ----D---- C:\ProgramData\LGE
2016-12-23 08:02:53 ----D---- C:\ProgramData\HTC
2016-12-23 08:02:53 ----D---- C:\Program Files (x86)\Microsoft Care Suite
2016-12-23 08:02:20 ----D---- C:\WINDOWS\SYSWOW64\FFU Loader Driver
2016-12-23 08:02:17 ----D---- C:\Program Files (x86)\Windows Kits

======List of files/folders modified in the last 1 month======

2017-01-14 11:59:56 ----D---- C:\Program Files\trend micro
2017-01-14 11:51:28 ----D---- C:\WINDOWS\Prefetch
2017-01-14 11:50:45 ----D---- C:\WINDOWS\Temp
2017-01-14 11:42:48 ----SHDC---- C:\WINDOWS\Installer
2017-01-14 11:37:35 ----SHD---- C:\$RECYCLE.BIN
2017-01-14 11:36:57 ----D---- C:\WINDOWS\AppReadiness
2017-01-14 11:36:49 ----RD---- C:\Users
2017-01-14 11:34:20 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2017-01-14 11:31:37 ----D---- C:\ProgramData\PDFC
2017-01-14 11:31:23 ----D---- C:\ProgramData\NVIDIA
2017-01-14 11:30:37 ----D---- C:\WINDOWS\system32\sru
2017-01-14 11:18:44 ----D---- C:\WINDOWS\system32\drivers
2017-01-14 11:15:52 ----HD---- C:\Program Files\WindowsApps
2017-01-14 11:06:47 ----D---- C:\WINDOWS\system32\catroot2
2017-01-14 10:57:39 ----D---- C:\WINDOWS\system32\config
2017-01-14 10:57:25 ----D---- C:\WINDOWS\SysWOW64
2017-01-14 10:57:25 ----D---- C:\WINDOWS\System32
2017-01-14 10:56:40 ----D---- C:\Program Files\Windows Media Player
2017-01-14 10:56:37 ----D---- C:\Windows
2017-01-14 10:56:36 ----D---- C:\WINDOWS\system32\wbem
2017-01-14 10:55:08 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-01-14 10:55:08 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2017-01-14 10:55:08 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-01-14 10:55:08 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-01-14 10:55:08 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-01-14 10:55:08 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-01-14 10:55:08 ----D---- C:\WINDOWS\system32\oobe
2017-01-14 10:55:08 ----D---- C:\WINDOWS\system32\migration
2017-01-14 10:55:08 ----D---- C:\WINDOWS\ShellExperiences
2017-01-14 10:55:08 ----D---- C:\WINDOWS\INF
2017-01-14 10:54:58 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-01-14 10:54:58 ----D---- C:\WINDOWS\SYSWOW64\oobe
2017-01-14 10:54:58 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2017-01-14 10:54:58 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-01-14 10:54:58 ----D---- C:\WINDOWS\system32\Sysprep
2017-01-14 10:54:58 ----D---- C:\WINDOWS\system32\setup
2017-01-14 10:54:57 ----SD---- C:\WINDOWS\system32\Nui
2017-01-14 10:54:57 ----SD---- C:\WINDOWS\system32\F12
2017-01-14 10:54:57 ----SD---- C:\WINDOWS\system32\dsc
2017-01-14 10:54:57 ----SD---- C:\WINDOWS\system32\DiagSvcs
2017-01-14 10:54:57 ----D---- C:\WINDOWS\system32\migwiz
2017-01-14 10:54:57 ----D---- C:\WINDOWS\system32\inetsrv
2017-01-14 10:54:57 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-01-14 10:54:57 ----D---- C:\WINDOWS\system32\Dism
2017-01-14 10:54:56 ----D---- C:\WINDOWS\system32\Boot
2017-01-14 10:54:56 ----D---- C:\WINDOWS\servicing
2017-01-14 10:54:56 ----D---- C:\WINDOWS\Provisioning
2017-01-14 10:54:56 ----D---- C:\WINDOWS\PolicyDefinitions
2017-01-14 10:54:55 ----RD---- C:\Program Files\Windows Defender
2017-01-14 10:54:55 ----D---- C:\WINDOWS\WinSxS
2017-01-14 10:54:55 ----D---- C:\WINDOWS\AppPatch
2017-01-14 10:54:55 ----D---- C:\Program Files\Windows Photo Viewer
2017-01-14 10:54:55 ----D---- C:\Program Files\Windows Mail
2017-01-14 10:54:55 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2017-01-14 10:54:55 ----D---- C:\Program Files\Internet Explorer
2017-01-14 10:54:55 ----D---- C:\Program Files\IDT
2017-01-14 10:54:55 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-01-14 10:54:55 ----D---- C:\Program Files (x86)\Windows Media Player
2017-01-14 10:54:55 ----D---- C:\Program Files (x86)\Windows Mail
2017-01-14 10:54:55 ----D---- C:\Program Files (x86)\Windows Defender
2017-01-14 10:54:55 ----D---- C:\Program Files (x86)\Internet Explorer
2017-01-14 10:54:20 ----D---- C:\WINDOWS\Tasks
2017-01-14 10:54:19 ----D---- C:\WINDOWS\SYSWOW64\IME
2017-01-14 10:54:17 ----D---- C:\WINDOWS\system32\Tasks
2017-01-14 10:54:17 ----D---- C:\WINDOWS\system32\SMI
2017-01-14 10:54:17 ----D---- C:\WINDOWS\system32\IME
2017-01-14 10:54:16 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-01-14 10:54:09 ----D---- C:\WINDOWS\rescache
2017-01-14 10:53:58 ----D---- C:\WINDOWS\Help
2017-01-14 10:53:51 ----D---- C:\Users\SNEK\AppData\Roaming\dvdcss
2017-01-14 10:53:28 ----D---- C:\ProgramData\Ant Movie Catalog
2017-01-14 10:53:28 ----D---- C:\Program Files\NVIDIA Corporation
2017-01-14 10:53:24 ----RD---- C:\Program Files (x86)\Skype
2017-01-14 10:53:24 ----D---- C:\Program Files (x86)\OpenRA
2017-01-14 10:53:20 ----D---- C:\Program Files (x86)\Freemake
2017-01-14 10:53:19 ----D---- C:\Program Files (x86)\CDBurnerXP
2017-01-14 10:52:52 ----D---- C:\WINDOWS\system32\SleepStudy
2017-01-14 10:45:44 ----D---- C:\WINDOWS\registration
2017-01-14 10:40:27 ----D---- C:\WINDOWS\system32\DriverStore
2017-01-14 10:40:09 ----D---- C:\WINDOWS\system32\CatRoot
2017-01-14 10:38:39 ----RD---- C:\WINDOWS\Microsoft.NET
2017-01-14 10:37:13 ----D---- C:\WINDOWS\Boot
2017-01-14 10:35:47 ----D---- C:\Users\SNEK\AppData\Roaming\Subtitle Edit
2017-01-14 10:35:38 ----D---- C:\Users\SNEK\AppData\Roaming\AnvSoft
2017-01-14 10:34:32 ----HD---- C:\ProgramData
2017-01-14 10:34:32 ----D---- C:\ProgramData\Visan
2017-01-14 10:34:32 ----D---- C:\ProgramData\Skype
2017-01-14 10:34:32 ----D---- C:\ProgramData\Package Cache
2017-01-14 10:34:22 ----D---- C:\ProgramData\NVIDIA Corporation
2017-01-14 10:34:03 ----SD---- C:\ProgramData\Microsoft
2017-01-14 10:33:35 ----RD---- C:\Program Files
2017-01-14 10:32:20 ----RD---- C:\Program Files (x86)
2017-01-14 10:32:17 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-01-14 10:31:47 ----D---- C:\Program Files (x86)\Garmin
2017-01-14 10:31:39 ----D---- C:\Program Files (x86)\Dropbox
2017-01-14 10:31:26 ----D---- C:\Program Files (x86)\Common Files
2017-01-14 09:59:15 ----D---- C:\ProgramData\truesuite
2017-01-13 22:13:20 ----SHD---- C:\System Volume Information
2017-01-13 21:12:26 ----D---- C:\ProgramData\VSO
2017-01-13 14:52:25 ----D---- C:\Program Files (x86)\URUSoft
2017-01-12 21:34:30 ----D---- C:\WINDOWS\CbsTemp
2017-01-12 19:45:44 ----D---- C:\WINDOWS\system32\LogFiles
2017-01-11 21:43:26 ----D---- C:\ProgramData\Freemake
2017-01-11 19:56:04 ----D---- C:\WINDOWS\system32\MRT
2017-01-11 19:53:02 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-01-07 18:50:56 ----D---- C:\Program Files (x86)\AviSynth
2017-01-03 12:56:21 ----D---- C:\VÝDAJE
2017-01-01 11:19:46 ----D---- C:\WINDOWS\LiveKernelReports
2016-12-31 18:38:36 ----D---- C:\NADA
2016-12-30 09:09:06 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2016-12-30 09:09:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-25 12:09:03 ----D---- C:\GOG Games
2016-12-25 10:00:24 ----D---- C:\Program Files (x86)\GalaxyClient
2016-12-25 09:49:13 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-12-24 19:22:22 ----D---- C:\WINDOWS\system32\Macromed
2016-12-24 19:22:20 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-12-23 07:58:57 ----D---- C:\ProgramData\Installations
2016-12-23 00:13:26 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-12-18 17:24:22 ----D---- C:\Users\SNEK\AppData\Roaming\Mp3tag
2016-12-17 12:21:49 ----D---- C:\WINDOWS\Logs
2016-12-17 11:42:42 ----D---- C:\Program Files (x86)\Mp3tag
2016-12-16 08:59:20 ----RSD---- C:\WINDOWS\assembly
2016-12-15 18:02:25 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-12-15 18:02:22 ----D---- C:\WINDOWS\system32\en-US

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\WINDOWS\System32\drivers\ACPI.sys [2016-07-16 705888]
R0 acpiex;Microsoft ACPIEx Driver; C:\WINDOWS\System32\Drivers\acpiex.sys [2016-07-16 126816]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-09-08 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-10-19 293352]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\WINDOWS\System32\drivers\CLFS.sys [2016-12-09 377184]
R0 CNG;CNG; C:\WINDOWS\System32\Drivers\cng.sys [2016-12-21 624048]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\WINDOWS\System32\drivers\disk.sys [2016-07-16 101720]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\WINDOWS\System32\drivers\fileinfo.sys [2016-07-16 85344]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\WINDOWS\system32\drivers\fltmgr.sys [2016-07-16 377696]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\WINDOWS\System32\DRIVERS\fvevol.sys [2016-09-15 649568]
R0 iaStor;@oem98.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-10-17 559384]
R0 intelpep;@intelpep.inf,%INTELPEP.SVCDESC%;Intel(R) Power Engine Plug-in Driver; C:\WINDOWS\System32\drivers\intelpep.sys [2016-07-16 48152]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 KSecDD;KSecDD; C:\WINDOWS\System32\Drivers\ksecdd.sys [2016-09-21 133472]
R0 KSecPkg;KSecPkg; C:\WINDOWS\System32\Drivers\ksecpkg.sys [2016-09-21 168800]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\WINDOWS\System32\drivers\mountmgr.sys [2016-07-16 104800]
R0 msisadrv;msisadrv; C:\WINDOWS\System32\drivers\msisadrv.sys [2016-07-16 18784]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\WINDOWS\System32\Drivers\mup.sys [2016-07-16 126304]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\WINDOWS\system32\drivers\ndis.sys [2016-10-05 1181536]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\WINDOWS\System32\drivers\partmgr.sys [2016-11-11 128352]
R0 pci;@pci.inf,%pci_svcdesc%;Řadič sběrnice PCI; C:\WINDOWS\System32\drivers\pci.sys [2016-12-14 335712]
R0 pcw;Performance Counters for Windows Driver; C:\WINDOWS\System32\drivers\pcw.sys [2016-07-16 51552]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\WINDOWS\system32\drivers\pdc.sys [2016-09-21 108384]
R0 rdyboost;ReadyBoost; C:\WINDOWS\System32\drivers\rdyboost.sys [2016-07-16 267104]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\WINDOWS\System32\drivers\spaceport.sys [2016-10-15 557408]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\WINDOWS\system32\drivers\afd.sys [2016-10-15 584032]
R1 ahcache;@%systemroot%\system32\drivers\ahcache.sys,-102; C:\WINDOWS\system32\DRIVERS\ahcache.sys [2016-10-15 227328]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-09-08 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-09-08 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-09-18 969184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-09-27 513632]
R1 BasicDisplay;BasicDisplay; C:\WINDOWS\System32\drivers\BasicDisplay.sys [2016-07-16 56320]
R1 BasicRender;BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [2016-07-16 41472]
R1 Beep;Beep; C:\WINDOWS\system32\drivers\Beep.sys [2016-07-16 9728]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\WINDOWS\System32\drivers\cdrom.sys [2016-07-16 173056]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\WINDOWS\system32\drivers\csc.sys [2016-07-16 552448]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\WINDOWS\System32\Drivers\dfsc.sys [2016-10-05 144896]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 Msfs;Msfs; C:\WINDOWS\system32\drivers\Msfs.sys [2016-07-16 31232]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\WINDOWS\System32\drivers\mssmbios.sys [2016-07-16 43360]
R1 NetBIOS;@%windir%\system32\drivers\netbios.sys,-503; C:\WINDOWS\system32\drivers\netbios.sys [2016-07-16 57184]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\WINDOWS\System32\DRIVERS\netbt.sys [2016-07-16 279040]
R1 Npfs;Npfs; C:\WINDOWS\system32\drivers\Npfs.sys [2016-07-16 68608]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\WINDOWS\System32\drivers\npsvctrig.sys [2016-07-16 26624]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\WINDOWS\system32\drivers\nsiproxy.sys [2016-07-16 41984]
R1 Null;Null; C:\WINDOWS\system32\drivers\Null.sys [2016-07-16 7168]
R1 Psched;@%windir%\System32\drivers\pacer.sys,-101; C:\WINDOWS\System32\drivers\pacer.sys [2016-07-16 160608]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\WINDOWS\system32\DRIVERS\rdbss.sys [2016-11-11 433504]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-09-08 108816]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-09-08 163416]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2012-07-22 88480]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2012-07-22 46400]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\WINDOWS\system32\drivers\lltdio.sys [2016-07-16 66048]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\WINDOWS\system32\drivers\luafv.sys [2016-07-16 125952]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys [2016-11-11 282624]
R2 MsLldp;@%SystemRoot%\system32\drivers\mslldp.sys,-200; C:\WINDOWS\system32\drivers\mslldp.sys [2016-07-16 78336]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\WINDOWS\system32\drivers\Ndu.sys [2016-07-16 125440]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2011-02-11 35344]
R2 PEAUTH;PEAUTH; C:\WINDOWS\system32\drivers\peauth.sys [2016-07-16 723968]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\WINDOWS\system32\drivers\rspndr.sys [2016-07-16 81408]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\WINDOWS\system32\DRIVERS\stflt.sys [2011-12-24 51496]
R2 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\WINDOWS\System32\DRIVERS\srv.sys [2016-09-21 409088]
R3 AmUStor;@oem31.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2011-03-23 75352]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\WINDOWS\system32\DRIVERS\bowser.sys [2016-11-02 101888]
R3 CompositeBus;@compositebus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys [2016-07-16 39936]
R3 condrv;Console Driver; C:\WINDOWS\System32\drivers\condrv.sys [2016-07-16 53088]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\WINDOWS\System32\drivers\dxgkrnl.sys [2016-12-09 2189664]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\System32\drivers\HDAudBus.sys [2016-07-16 83456]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Ovladač třídy standardu HID Microsoft; C:\WINDOWS\System32\drivers\hidusb.sys [2016-09-21 38400]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\WINDOWS\system32\drivers\HTTP.sys [2016-10-15 1100128]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\WINDOWS\System32\drivers\intelppm.sys [2016-07-16 134144]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\WINDOWS\System32\drivers\kbdclass.sys [2016-07-16 62304]
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\WINDOWS\System32\drivers\kbdhid.sys [2016-09-15 39424]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20); C:\WINDOWS\System32\drivers\kdnic.sys [2016-07-16 25088]
R3 ksthunk;Kernel Streaming Thunks; C:\WINDOWS\system32\drivers\ksthunk.sys [2016-07-16 26112]
R3 LHidFilt;@oem20.inf,%LHidFilt.SvcDesc%;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2011-09-02 66840]
R3 LMouFilt;@oem20.inf,%LMouFilt.SvcDesc%;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2011-09-02 60696]
R3 LUsbFilt;@oem66.inf,%FltDisplayName%;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2011-09-02 42776]
R3 MEIx64;@oem56.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2010-10-19 56344]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\WINDOWS\System32\drivers\monitor.sys [2016-07-16 38400]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\WINDOWS\System32\drivers\mouclass.sys [2016-07-16 59232]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Ovladač myši standardu HID; C:\WINDOWS\System32\drivers\mouhid.sys [2016-07-16 32256]
R3 mpsdrv;@%SystemRoot%\system32\drivers\mpsdrv.sys,-23092; C:\WINDOWS\System32\drivers\mpsdrv.sys [2016-07-16 75776]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-09-21 175616]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\WINDOWS\system32\DRIVERS\mrxsmb.sys [2016-09-21 450392]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys [2016-11-11 223584]
R3 NdisVirtualBus;@%SystemRoot%\System32\drivers\NdisVirtualBus.sys,-200; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2016-07-16 20480]
R3 NTFS;NTFS; C:\WINDOWS\system32\drivers\NTFS.sys [2016-11-02 2255712]
R3 NVHDA;@oem130.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2016-08-26 240704]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcwu.inf_amd64_16f6c9b501baeb7d\nvlddmkm.sys [2016-08-26 13754928]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-02-17 28032]
R3 nvvad_WaveExtensible;@oem122.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-12-18 47760]
R3 P0630VID;@oem11.inf,%szDeviceDesc%;Creative WebCam Live!; C:\WINDOWS\system32\DRIVERS\P0630Vid.sys [2005-11-11 99488]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\WINDOWS\System32\drivers\rdpbus.sys [2016-07-16 26112]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-07-16 589824]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\WINDOWS\System32\DRIVERS\srv2.sys [2016-11-11 713216]
R3 srvnet;srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [2016-09-21 248320]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2013-03-29 544768]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2016-07-16 12800]
S0 3ware;3ware; C:\WINDOWS\System32\drivers\3ware.sys [2016-07-16 107360]
S0 ADP80XX;ADP80XX; C:\WINDOWS\System32\drivers\ADP80XX.SYS [2016-07-16 1135456]
S0 amdsata;amdsata; C:\WINDOWS\System32\drivers\amdsata.sys [2016-07-16 83296]
S0 amdsbs;amdsbs; C:\WINDOWS\System32\drivers\amdsbs.sys [2016-07-16 259424]
S0 amdxata;amdxata; C:\WINDOWS\System32\drivers\amdxata.sys [2016-07-16 26976]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Storport's Miniport Driver; C:\WINDOWS\System32\drivers\arcsas.sys [2016-07-16 131936]
S0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\WINDOWS\System32\drivers\atapi.sys [2016-07-16 28512]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;QLogic Network Adapter VBD; C:\WINDOWS\System32\drivers\bxvbda.sys [2016-07-16 533856]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;QLogic 10 Gigabit Ethernet Adapter VBD; C:\WINDOWS\System32\drivers\evbda.sys [2016-07-16 3418976]
S0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\WINDOWS\System32\drivers\EhStorClass.sys [2016-07-16 88416]
S0 EhStorTcgDrv;@EhStorTcgDrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys [2016-09-21 118112]
S0 HpSAMD;HpSAMD; C:\WINDOWS\System32\drivers\HpSAMD.sys [2016-07-16 64352]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\WINDOWS\System32\drivers\hwpolicy.sys [2016-07-16 29536]
S0 iaStorAV;@iastorav.inf,%iaStorAV.DeviceDesc%;Intel(R) SATA RAID Controller Windows; C:\WINDOWS\System32\drivers\iaStorAV.sys [2016-07-16 673120]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\WINDOWS\System32\drivers\iaStorV.sys [2016-07-16 412000]
S0 intelide;intelide; C:\WINDOWS\System32\drivers\intelide.sys [2016-07-16 19296]
S0 isapnp;isapnp; C:\WINDOWS\System32\drivers\isapnp.sys [2016-07-16 22880]
S0 LSI_SAS;LSI_SAS; C:\WINDOWS\System32\drivers\lsi_sas.sys [2016-07-16 108896]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 LSI_SSS;LSI_SSS; C:\WINDOWS\System32\drivers\lsi_sss.sys [2016-07-16 82776]
S0 megasas;megasas; C:\WINDOWS\System32\drivers\megasas.sys [2016-07-16 59744]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 megasr;megasr; C:\WINDOWS\System32\drivers\megasr.sys [2016-07-16 575840]
S0 mvumis;mvumis; C:\WINDOWS\System32\drivers\mvumis.sys [2016-07-16 63840]
S0 nvraid;nvraid; C:\WINDOWS\System32\drivers\nvraid.sys [2016-07-16 150368]
S0 nvstor;nvstor; C:\WINDOWS\System32\drivers\nvstor.sys [2016-07-16 166240]
S0 pciide;pciide; C:\WINDOWS\System32\drivers\pciide.sys [2016-07-16 16224]
S0 pcmcia;pcmcia; C:\WINDOWS\System32\drivers\pcmcia.sys [2016-07-16 118112]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\WINDOWS\System32\drivers\sbp2port.sys [2016-07-16 110432]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 SiSRaid2;SiSRaid2; C:\WINDOWS\System32\drivers\SiSRaid2.sys [2016-07-16 44896]
S0 SiSRaid4;SiSRaid4; C:\WINDOWS\System32\drivers\sisraid4.sys [2016-07-16 81760]
S0 stexstor;stexstor; C:\WINDOWS\System32\drivers\stexstor.sys [2016-07-16 31072]
S0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\WINDOWS\System32\drivers\storahci.sys [2016-09-15 130912]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\WINDOWS\system32\drivers\dam.sys [2016-10-15 63328]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\WINDOWS\System32\drivers\1394ohci.sys [2016-07-16 235520]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\WINDOWS\System32\drivers\acpipagr.sys [2016-07-16 12288]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\WINDOWS\System32\drivers\acpipmi.sys [2016-07-16 14336]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\WINDOWS\System32\drivers\acpitime.sys [2016-07-16 13312]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\WINDOWS\System32\drivers\amdk8.sys [2016-07-16 123392]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\WINDOWS\System32\drivers\amdppm.sys [2016-07-16 120832]
S3 AppID;@%systemroot%\system32\srpapi.dll,-100; C:\WINDOWS\system32\drivers\appid.sys [2016-07-16 172896]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-16 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-16 141152]
S3 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-09-08 37656]
S3 AsyncMac;@%systemroot%\system32\mprmsg.dll,-32000; C:\WINDOWS\System32\drivers\asyncmac.sys [2016-07-16 28160]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 bcmfn2;@bcmfn2.inf,%bcmfn2.SVCDESC%;bcmfn2 Service; C:\WINDOWS\System32\drivers\bcmfn2.sys [2016-07-16 9728]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2016-07-16 43008]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2016-07-16 65536]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2016-07-16 31232]
S3 BTHMODEM;@mdmbtmdm.inf,%BthModem.DisplayName%;Bluetooth Modem Communications Driver; C:\WINDOWS\System32\drivers\bthmodem.sys [2016-07-16 66048]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\WINDOWS\System32\drivers\circlass.sys [2016-07-16 48640]
S3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\System32\drivers\CmBatt.sys [2016-07-16 29696]
S3 dbx;dbx; C:\WINDOWS\system32\DRIVERS\dbx.sys []
S3 dg_ssudbus;@oem183.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 dmvsc;dmvsc; C:\WINDOWS\System32\drivers\dmvsc.sys [2016-07-16 35840]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Ovladače zvuku považované společností Microsoft za důvěryhodné; C:\WINDOWS\system32\DRIVERS\drmkaud.sys [2016-07-16 16168]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\WINDOWS\System32\drivers\errdev.sys [2016-07-16 13312]
S3 exfat;exFAT File System Driver; C:\WINDOWS\system32\drivers\exfat.sys [2016-07-16 334848]
S3 fastfat;FAT12/16/32 File System Driver; C:\WINDOWS\system32\drivers\fastfat.sys [2016-11-11 352096]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\WINDOWS\System32\drivers\fdc.sys [2016-07-16 32256]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\WINDOWS\system32\drivers\filetrace.sys [2016-07-16 35840]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\WINDOWS\System32\drivers\flpydisk.sys [2016-07-16 26112]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\WINDOWS\System32\drivers\FsDepends.sys [2016-07-16 62816]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\WINDOWS\System32\drivers\vmgencounter.sys [2016-07-16 13312]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\WINDOWS\System32\Drivers\msgpioclx.sys [2016-07-16 168800]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\WINDOWS\System32\drivers\HidBatt.sys [2016-07-16 36704]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Miniport Microsoft Bluetooth HID; C:\WINDOWS\System32\drivers\hidbth.sys [2016-07-16 108032]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\WINDOWS\System32\drivers\hidi2c.sys [2016-07-16 51200]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\WINDOWS\System32\drivers\hidir.sys [2016-07-16 46592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-21 73568]
S3 hyperkbd;hyperkbd; C:\WINDOWS\System32\drivers\hyperkbd.sys [2016-07-16 16384]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 i8042prt;@keyboard.inf,%i8042prt.SvcDesc%;i8042 Keyboard and PS/2 Mouse Port Driver; C:\WINDOWS\System32\drivers\i8042prt.sys [2016-07-16 114176]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 iaLPSSi_GPIO;@ialpssi_gpio.inf,%iaLPSSi_GPIO.SVCDESC%;Intel(R) Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2016-07-16 38128]
S3 iaLPSSi_I2C;@ialpssi_i2c.inf,%iaLPSSi_I2C.SVCDESC%;Intel(R) Serial IO I2C Controller Driver; C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2016-07-16 113152]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 IpFilterDriver;@%systemroot%\system32\mprmsg.dll,-32013; C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys [2016-07-16 85504]
S3 IPMIDRV;IPMIDRV; C:\WINDOWS\System32\drivers\IPMIDrv.sys [2016-07-16 89952]
S3 IPNAT;IP Network Address Translator; C:\WINDOWS\System32\drivers\ipnat.sys [2016-07-16 212480]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\WINDOWS\system32\drivers\irenum.sys [2016-07-16 19456]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\WINDOWS\System32\drivers\msiscsi.sys [2016-07-16 277344]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 Modem;Modem; C:\WINDOWS\system32\drivers\modem.sys [2016-11-11 42496]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\WINDOWS\system32\drivers\mrxdav.sys [2016-10-05 143872]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\WINDOWS\System32\drivers\bridge.sys [2016-07-16 114688]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;Common Driver for Buttons, DockMode and Laptop/Slate Indicator; C:\WINDOWS\System32\drivers\msgpiowin32.sys [2016-07-16 50528]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\WINDOWS\System32\drivers\mshidkmdf.sys [2016-07-16 8704]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\WINDOWS\System32\drivers\mshidumdf.sys [2016-07-16 11776]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Microsoft Streaming Service Proxy; C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys [2016-07-16 27136]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Microsoft Streaming Clock Proxy; C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys [2016-07-16 10752]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Microsoft Streaming Quality Manager Proxy; C:\WINDOWS\system32\DRIVERS\MSPQM.sys [2016-07-16 10752]
S3 MsRPC;MsRPC; C:\WINDOWS\system32\drivers\MsRPC.sys [2016-07-16 361312]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-16 179040]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\DRIVERS\MSTEE.sys [2016-07-16 12800]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\WINDOWS\System32\drivers\MTConfig.sys [2016-07-16 15872]
S3 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\WINDOWS\system32\DRIVERS\nwifi.sys [2016-07-16 533504]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\WINDOWS\System32\drivers\ndiscap.sys [2016-07-16 50176]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [2016-07-16 126464]
S3 NdisTapi;@%systemroot%\system32\mprmsg.dll,-32001; C:\WINDOWS\System32\DRIVERS\ndistapi.sys [2016-07-16 26112]
S3 Ndisuio;NDIS Usermode I/O Protocol; C:\WINDOWS\system32\drivers\ndisuio.sys [2016-07-16 63488]
S3 NdisWan;@%systemroot%\system32\mprmsg.dll,-32002; C:\WINDOWS\System32\drivers\ndiswan.sys [2016-07-16 189440]
S3 ndiswanlegacy;@%systemroot%\system32\mprmsg.dll,-32014; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [2016-07-16 189440]
S3 ndproxy;@%SystemRoot%\system32\drivers\todo.sys,-101;NDIS Proxy; C:\WINDOWS\System32\DRIVERS\NDProxy.sys [2016-07-16 60928]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 OxPPort;OxPPort; C:\WINDOWS\system32\drivers\OxPPort.sys [2008-07-31 98304]
S3 OxSer;OxSer; C:\WINDOWS\system32\drivers\OxSer.sys [2009-09-16 98352]
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\WINDOWS\System32\drivers\parport.sys [2016-07-16 96768]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2016-11-17 82816]
S3 pmxdrv;pmxdrv; \??\C:\Windows\system32\drivers\pmxdrv.sys [2011-11-08 31152]
S3 PptpMiniport;@%systemroot%\system32\mprmsg.dll,-32006; C:\WINDOWS\System32\drivers\raspptp.sys [2016-07-16 96256]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\WINDOWS\System32\drivers\processr.sys [2016-07-16 119808]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\WINDOWS\system32\drivers\qwavedrv.sys [2016-07-16 48640]
S3 RasAcd;Remote Access Auto Connection Driver; C:\WINDOWS\System32\DRIVERS\rasacd.sys [2016-07-16 17408]
S3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;WAN Miniport (IKEv2); C:\WINDOWS\System32\drivers\AgileVpn.sys [2016-07-16 107520]
S3 Rasl2tp;@%systemroot%\system32\mprmsg.dll,-32005; C:\WINDOWS\System32\drivers\rasl2tp.sys [2016-07-16 104960]
S3 RasPppoe;@%systemroot%\system32\mprmsg.dll,-32007; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [2016-07-16 81408]
S3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\WINDOWS\System32\drivers\rassstp.sys [2016-07-16 77824]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\WINDOWS\System32\drivers\rdpdr.sys [2016-07-16 177152]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\WINDOWS\System32\drivers\rdpvideominiport.sys [2016-07-16 29536]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 s3cap;s3cap; C:\WINDOWS\System32\drivers\vms3cap.sys [2016-07-16 9216]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\WINDOWS\System32\DRIVERS\scfilter.sys [2016-07-16 43008]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 sdbus;sdbus; C:\WINDOWS\System32\drivers\sdbus.sys [2016-10-05 279904]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\WINDOWS\System32\drivers\sdstor.sys [2016-07-16 95072]
S3 SerCx;Serial UART Support Library; C:\WINDOWS\system32\drivers\SerCx.sys [2016-07-16 74592]
S3 SerCx2;Serial UART Support Library; C:\WINDOWS\system32\drivers\SerCx2.sys [2016-07-16 151904]
S3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\WINDOWS\System32\drivers\serenum.sys [2016-07-16 25088]
S3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\WINDOWS\System32\drivers\serial.sys [2016-07-16 83968]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\WINDOWS\System32\drivers\sermouse.sys [2016-07-16 27648]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\WINDOWS\System32\drivers\sfloppy.sys [2016-07-16 18432]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\WINDOWS\system32\drivers\SpbCx.sys [2016-07-16 79200]
S3 ssudmdm;@oem184.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S4 cdfs;CD/DVD File System Reader; C:\WINDOWS\system32\DRIVERS\cdfs.sys [2016-07-16 92160]
S4 cnghwassist;@%SystemRoot%\system32\drivers\cnghwassist.sys,-100; C:\WINDOWS\System32\DRIVERS\cnghwassist.sys [2016-07-16 38752]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-11-23 82640]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-08 197128]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_44a3e2;CDPUserSvc_44a3e2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DbxSvc;DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [2017-01-06 51504]
R2 DcomLaunch;@combase.dll,-5012; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 EventSystem;@comres.dll,-2450; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 FreemakeVideoCapture;FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [2016-12-20 9216]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-02-17 1164672]
R2 GoProDeviceDetectionService;GoPro Device Detection Service; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [2016-12-02 37808]
R2 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-12-07 31776]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2015-11-20 21184]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-24 212944]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-09-21 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-02-17 1880960]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-02-17 2609024]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-08-01 1365048]
R2 OneSyncSvc_44a3e2;Hostitel synchronizace_44a3e2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-05-06 1128952]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 RpcSs;@combase.dll,-5010; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\WINDOWS\system32\lsass.exe [2016-09-21 57400]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\WINDOWS\System32\spoolsv.exe [2016-10-15 792064]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2015-02-05 3037520]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-07-23 410768]
R2 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 Browser;@%systemroot%\system32\browser.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 KeyIso;@keyiso.dll,-100; C:\WINDOWS\system32\lsass.exe [2016-09-21 57400]
R3 lfsvc;@%SystemRoot%\System32\lfsvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NcbService;@%SystemRoot%\system32\ncbservice.dll,-500; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-02-17 6474112]
R3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-13 143144]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2011-06-09 264008]
S2 gpsvc;@gpapi.dll,-112; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\WINDOWS\system32\sppsvc.exe [2016-10-15 5622088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-24 270936]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\WINDOWS\System32\alg.exe [2016-07-16 95744]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AppMgmt;@appmgmts.dll,-3250; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AppReadiness;@%SystemRoot%\System32\AppReadiness.dll,-1000; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 AppXSvc;@%SystemRoot%\system32\appxdeploymentserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 COMSysApp;@comres.dll,-947; C:\WINDOWS\system32\dllhost.exe [2016-07-16 21344]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-13 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EapHost;@%systemroot%\system32\eapsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\WINDOWS\System32\lsass.exe [2016-09-21 57400]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\WINDOWS\system32\fxssvc.exe [2016-07-16 644608]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2016-12-25 284224]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2016-11-15 6625856]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2017-01-09 1038864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 KtmRm;@comres.dll,-2946; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_44a3e2;Služba zasílání zpráv_44a3e2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-10-21 172488]
S3 MSDTC;@comres.dll,-2797; C:\WINDOWS\System32\msdtc.exe [2016-07-16 147456]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\WINDOWS\system32\msiexec.exe [2016-07-16 65024]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\WINDOWS\system32\lsass.exe [2016-09-21 57400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\WINDOWS\SysWow64\perfhost.exe [2016-07-16 21504]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc_44a3e2;Data kontaktů_44a3e2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 PrintNotify;@C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\WINDOWS\system32\locator.exe [2016-07-16 11264]
S3 ScDeviceEnum;@%SystemRoot%\System32\ScDeviceEnum.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-21 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 smphost;@%SystemRoot%\System32\smphost.dll,-102; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\WINDOWS\System32\snmptrap.exe [2016-07-16 15872]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-12-14 822624]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 RemoteRegistry;@regsvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

Zdravím!
Nevím, jestli tohle má něco společného s malwarem, ale zkusíme vyčistit. Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Díky, vkládám log z ADW:

# AdwCleaner v6.042 - Log vytvořen 14/01/2017 v 13:15:39
# Aktualizováno dne 06/01/2017 z Malwarebytes
# Databáze : 2017-01-11.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : SNEK - SNEK-HP
# Spuštěno z : C:\Users\SNEK\Downloads\adwcleaner_6.042.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

[-] Služba smazána: sp_rsdrv2


***** [ Složky ] *****

[-] Složka smazána: C:\Users\SNEK\AppData\LocalLow\SimplyTech
[-] Složka smazána: C:\Users\SNEK\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
[-] Složka smazána: C:\Users\SNEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
[-] Složka smazána: C:\Users\MAMULE\AppData\Roaming\Check Point Software Technologies LTD
[-] Složka smazána: C:\Users\MAMULE\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
[-] Složka smazána: C:\Users\TATULE\AppData\LocalLow\SimplyTech
[-] Složka smazána: C:\Users\TATULE\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
[-] Složka smazána: C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
[-] Složka smazána: C:\ProgramData\ytd video downloader
[-] Složka smazána: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
[-] Složka smazána: C:\Program Files (x86)\GreenTree Applications
[-] Složka smazána: C:\Program Files (x86)\Red Sky
[-] Složka smazána: C:\Program Files (x86)\SmartTweak
[-] Složka smazána: C:\Program Files (x86)\WinToFlash Suggestor
[#] Složka smazána po restartu: C:\Program Files (x86)\wintoflash suggestor
[-] Složka smazána: C:\Program Files (x86)\Common Files\freemake shared
[-] Složka smazána: C:\Users\MAMULE\AppData\Roaming\Mozilla\Firefox\Profiles\ab8c9o0d.default\extensions\ffxtlbr@zonealarm.com
[-] Složka smazána: C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
[-] Složka smazána: C:\Users\MAMULE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
[-] Složka smazána: C:\Users\TATULE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj


***** [ Soubory ] *****

[-] Soubor smazán: C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\invalidprefs.js
[-] Soubor smazán: C:\Users\TATULE\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\invalidprefs.js
[-] Soubor smazán: C:\Users\MAMULE\AppData\Roaming\Mozilla\Firefox\Profiles\ab8c9o0d.default\searchplugins\zonealarm.xml


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****

[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{78CE34FD-F6D4-4866-B79C-A37268D06A04}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{80904944-C726-4C7D-A452-3FFF2A882095}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\Check Point Software Technologies LTD
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\PRODUCTSETUP
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\ProtectedSearch
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\smarttweak
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\YahooPartnerToolbar
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\csastats
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\AppDataLow\Software\simplytech
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\AppDataLow\Software\WinToFlash Suggestor
[#] Klíč smazán po restartu: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\AppDataLow\Software\SIMPLYTECH
[#] Klíč smazán po restartu: HKCU\Software\Check Point Software Technologies LTD
[#] Klíč smazán po restartu: HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: HKCU\Software\ProtectedSearch
[#] Klíč smazán po restartu: HKCU\Software\smarttweak
[#] Klíč smazán po restartu: HKCU\Software\YahooPartnerToolbar
[#] Klíč smazán po restartu: HKCU\Software\csastats
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\simplytech
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\WinToFlash Suggestor
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\SIMPLYTECH
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Check Point Software Technologies LTD
[#] Klíč smazán po restartu: [x64] HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: [x64] HKCU\Software\ProtectedSearch
[#] Klíč smazán po restartu: [x64] HKCU\Software\smarttweak
[#] Klíč smazán po restartu: [x64] HKCU\Software\YahooPartnerToolbar
[#] Klíč smazán po restartu: [x64] HKCU\Software\csastats
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\simplytech
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\WinToFlash Suggestor
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\SIMPLYTECH
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[-] Klíč smazán: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C60174B4-FA33-41C3-9031-504D775ADD5D}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C60174B4-FA33-41C3-9031-504D775ADD5D}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[-] Hodnota smazána: HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DisplayName]
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C60174B4-FA33-41C3-9031-504D775ADD5D}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
[#] Hodnota smazána po restartu: [x64] HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DisplayName]
[-] Klíč smazán: HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\aacbndibbcpajfgnkdkaakeiojmmgmnk
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\acaoakiamfeidcmgooclgeleejkbaecf
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\jpihmmhdcobmllpcnpfbhnipmhamldje
[-] Klíč smazán: HKCU\Software\Google\Chrome\Extensions\bmkckgpgekmanipelfidlhmkfcjicion
[#] Klíč smazán po restartu: [x64] HKCU\Software\Google\Chrome\Extensions\bmkckgpgekmanipelfidlhmkfcjicion


***** [ Prohlížeče ] *****

[-] Firefox předvolby vyčištěny: "extensions.zonealarm.tlbrSrchUrl" - "hxxp://search.zonealarm.com/search?src=tb&tbid=goughGA&Lan={dfltLng}&gu=cab2b7e0d57e4c4c9bd51e83be71c1b1 [INSTALLTOOLBAR] [SETSEARCH] [SETHOME]&tu=10GXy00Ax2C01g0&sku=&tstsId=&ver=&&q="
[-] [C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: bmkckgpgekmanipelfidlhmkfcjicion
[-] [C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: jbolfgndggfhhpbnkgnpjkfhinclbigj
[-] [C:\Users\MAMULE\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: jbolfgndggfhhpbnkgnpjkfhinclbigj
[-] [C:\Users\TATULE\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: bmkckgpgekmanipelfidlhmkfcjicion
[-] [C:\Users\TATULE\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: jbolfgndggfhhpbnkgnpjkfhinclbigj
[-] [C:\Users\SNEK\AppData\Local\Comodo\Dragon\User Data\Default\Web data] [Search Provider] Smazáno: ask.com
[-] [C:\Users\TATULE\AppData\Local\Comodo\Dragon\User Data\Default\Web data] [Search Provider] Smazáno: ask.com


*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [13136 Bajty] - [14/01/2017 13:15:39]
C:\AdwCleaner\AdwCleaner[S0].txt - [12875 Bajty] - [14/01/2017 13:14:44]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [13284 Bajty] ##########

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

POSÍLÁM ZASE NADVAKRÁT, JE TO DLOUHÉ:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-01-2017
Ran by SNEK (administrator) on SNEK-HP (14-01-2017 16:49:15)
Running from C:\Users\SNEK\Desktop
Loaded Profiles: SNEK (Available Profiles: SNEK & MAMULE & TATULE & DefaultAppPool)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Crawler Group) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\beats64.exe
() C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
(Hewlett-Packard Co.) C:\Program Files\hp\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe
(© 2015 Microsoft Corporation) C:\Users\SNEK\AppData\Local\Microsoft\BingSvc\BingSvc.exe
() C:\Users\SNEK\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\SNEK\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\Keystatus.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Piriform Ltd) C:\Program Files\Recuva\recuva64.exe
() C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.16112.10221.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Mozilla Corporation) C:\Users\SNEK\AppData\Local\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\SNEK\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [3884368 2015-07-27] (Crawler Group, LLC)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2011-08-24] (Hewlett-Packard )
HKLM\...\Run: [GoPro Tray App] => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [866224 2016-12-02] ()
HKLM-x32\...\Run: [HP KEYBOARDx] => C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE [710656 2010-02-11] (Hewlett-Packard)
HKLM-x32\...\Run: [BATINDICATOR] => C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe [2068992 2009-05-09] (Hewlett-Packard)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [658424 2011-05-06] (PDF Complete Inc)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-16] (AVAST Software)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26287016 2017-01-06] (Dropbox, Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\SNEK\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\SNEK\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\hp\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\...\Run: [BingSvc] => C:\Users\SNEK\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1407912 2017-01-09] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [231936 2016-07-16] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1407912 2017-01-09] (Garmin Ltd. or its subsidiaries)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-08] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.8.0.dll [2017-01-06] (Dropbox, Inc.)
GroupPolicy: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-1074238247-3953367479-3130915102-1000] => localhost:8080
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e1b43081-622d-40f1-8ff8-dc53c2c4eb0e}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=en-ww
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com/search?q={searchTerms}&r ... d=ie7&rlz=
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {7697BE66-4BA0-42CF-ADB1-47D90E90E134} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {7697BE66-4BA0-42CF-ADB1-47D90E90E134} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {21F98FC8-F7C3-4432-96C2-0D5B7241A31F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {2B7506C4-17FB-4EE4-A90A-A7956BF35235} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {31137FF1-66E7-4A37-979D-801CB0B996C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {4940ABA1-C0EF-4FA3-81EA-7D5DD0E7DE65} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {7697BE66-4BA0-42CF-ADB1-47D90E90E134} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {87316086-3D05-47D0-87FF-CCD59D7DB745} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {A9A886F7-0023-4AE5-B0A1-EC0AA3C9971B} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {C6664E23-D979-41E8-AFD5-9F714D1D548F} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {EB11013E-1486-41D7-A1FB-A341A9AFE855} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {F17F6DB2-B0D5-4138-9EB8-1A3CA592605B} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-21] (Oracle Corporation)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard64.dll [2015-07-27] (Crawler Group, LLC)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-06-09] (HP)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-21] (Oracle Corporation)
BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard.dll [2015-07-27] (Crawler Group, LLC)
BHO-x32: No Name -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> No File
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1439578849227
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default [2017-01-14]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\mb5fzbnk.default -> hxxps://www.google.com/search
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\mb5fzbnk.default -> Google
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\mb5fzbnk.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\mb5fzbnk.default -> Bing
FF Homepage: Mozilla\Firefox\Profiles\mb5fzbnk.default -> hxxps://www.google.cz
FF Extension: (Adblock Plus Pop-up Addon) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\adblockpopups@jessehakanen.net.xpi [2016-04-28]
FF Extension: (Classic Theme Restorer) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2016-12-22]
FF Extension: (Auto Shutdown NG) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\jid0-HZ5UvAEiWWAxT9TKLuhEgUCARqo@jetpack.xpi [2016-10-30]
FF Extension: (Google™ Translator) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\jid1-dgnIBwQga0SIBw@jetpack.xpi [2016-12-17]
FF Extension: (Google Translator for Firefox) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\translator@zoli.bod.xpi [2016-04-28]
FF Extension: (Walnut2 for Firefox) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\{080955ad-b8bb-4500-806f-d2b9ad73d72e}.xpi [2017-01-05]
FF Extension: (Walnut for Firefox) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi [2017-01-04]
FF Extension: (Google Analytics Opt-out Browser Add-on) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2016-05-10]
FF Extension: (Flash and Video Download) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2016-11-04]
FF Extension: (Adblock Plus) - C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF SearchPlugin: C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\searchplugins\alza.xml [2014-08-03]
FF SearchPlugin: C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\searchplugins\heurekacz.xml [2015-07-06]
FF SearchPlugin: C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\searchplugins\sfd.xml [2014-11-02]
FF SearchPlugin: C:\Users\SNEK\AppData\Roaming\Mozilla\Firefox\Profiles\mb5fzbnk.default\searchplugins\uloto.xml [2016-03-02]
FF Extension: (TrueSuite Website Logon) - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com [2017-01-14] [not signed]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-01-14]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-01-14]
FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker => not found
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-24] ()
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-24] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-03-30] (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-23] (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.11.3088 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2007-12-21] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.11.3006 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2007-12-21] (RealNetworks, Inc.)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\SNEK\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-04] (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-08] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll [2007-12-21] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpjplug.dll [2007-12-21] (RealNetworks, Inc.)
StartMenuInternet: FIREFOX.EXE - C:\Users\SNEK\AppData\Local\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us
CHR StartupUrls: Default -> "www.google.com"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll => No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\pdf.dll => No File
CHR Plugin: (Simple Pass 2011) - C:\Users\MAMULE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgfhihjicjofdejkbjgnjlaglaciobe\1.0_0\npwebsitelogon.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Microsoft Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll => No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (npFFApi) - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR Profile: C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default [2017-01-14]
CHR Extension: (Google Slides) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-20]
CHR Extension: (Google Docs) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-20]
CHR Extension: (Google Drive) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-20]
CHR Extension: (Seznam Lištička - Email) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-07-20]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-07-20]
CHR Extension: (YouTube) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-20]
CHR Extension: (Google Sheets) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-20]
CHR Extension: (MSN Homepage) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim [2016-07-20]
CHR Extension: (Google Docs Offline) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-20]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-07-20]
CHR Extension: (Gmail) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-20]
CHR Extension: (Chrome Media Router) - C:\Users\SNEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-14]
CHR HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\SNEK\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-05-19]
CHR HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-08] (AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-13] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-13] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51504 2017-01-06] (Dropbox, Inc.)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2016-12-20] (Ellora Assets Corp.) [File not signed]
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [284224 2016-12-25] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-11-15] (GOG.com)
S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1038864 2017-01-09] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-12-02] ()
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2015-11-20] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete Inc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [3037520 2015-02-05] (Crawler Group)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-09-08] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-09-08] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-09-08] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-09-08] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-08] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-09-18] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-09-27] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-09-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-19] (AVAST Software)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [88480 2012-07-22] ()
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [46400 2012-07-22] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcwu.inf_amd64_16f6c9b501baeb7d\nvlddmkm.sys [13754928 2016-08-26] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-02-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 OxPPort; C:\WINDOWS\system32\drivers\OxPPort.sys [98304 2008-07-31] (OEM)
S3 OxSer; C:\WINDOWS\system32\drivers\OxSer.sys [98352 2009-09-16] (OEM)
R3 P0630VID; C:\WINDOWS\system32\DRIVERS\P0630Vid.sys [99488 2005-11-11] (Creative Technology Ltd.)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-11-08] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R2 sp_rsdrv2; C:\WINDOWS\System32\DRIVERS\stflt.sys [51496 2011-08-24] (Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 tilfilter; C:\WINDOWS\System32\drivers\TIxHCIlfilter.sys [34424 2016-08-19] (Texas Instruments, Inc.)
R3 tiufilter; C:\WINDOWS\System32\drivers\TIxHCIufilter.sys [39032 2016-08-19] (Texas Instruments, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-01-14 16:49 - 2017-01-14 16:51 - 00038009 _____ C:\Users\SNEK\Desktop\FRST.txt
2017-01-14 16:48 - 2017-01-14 16:49 - 00000000 ____D C:\FRST
2017-01-14 16:46 - 2017-01-14 16:46 - 00112640 _____ (forum.viry.cz) C:\Users\SNEK\Desktop\FRSTLauncher.exe
2017-01-14 16:41 - 2017-01-14 16:41 - 02419200 _____ (Farbar) C:\Users\SNEK\Desktop\FRST64.exe
2017-01-14 13:56 - 2017-01-14 13:56 - 00000000 ____D C:\Users\TEMP.SNEK-HP.000\AppData\Local\NVIDIA
2017-01-14 13:54 - 2017-01-14 13:58 - 00000000 ____D C:\Users\TEMP.SNEK-HP.000\AppData\Local\Packages
2017-01-14 13:54 - 2017-01-14 13:58 - 00000000 ____D C:\Users\TEMP.SNEK-HP.000\AppData\Local\ConnectedDevicesPlatform
2017-01-14 13:54 - 2017-01-14 13:58 - 00000000 ____D C:\Users\TEMP.SNEK-HP.000
2017-01-14 13:17 - 2017-01-14 13:19 - 00000000 ____D C:\Users\TEMP.SNEK-HP\AppData\Local\ConnectedDevicesPlatform
2017-01-14 13:17 - 2017-01-14 13:19 - 00000000 ____D C:\Users\TEMP.SNEK-HP
2017-01-14 13:11 - 2017-01-14 13:15 - 00000000 ____D C:\AdwCleaner
2017-01-14 13:10 - 2017-01-14 13:10 - 03988944 _____ C:\Users\SNEK\Desktop\adwcleaner_6.042.exe
2017-01-14 13:03 - 2017-01-14 13:06 - 00000000 ____D C:\Users\TEMP\AppData\Local\ConnectedDevicesPlatform
2017-01-14 13:03 - 2017-01-14 13:06 - 00000000 ____D C:\Users\TEMP
2017-01-14 13:01 - 2017-01-14 13:01 - 00002126 _____ C:\AdwCleaner[S2].txt
2017-01-14 13:01 - 2017-01-14 13:01 - 00001953 _____ C:\AdwCleaner[R3].txt
2017-01-14 13:00 - 2017-01-14 13:00 - 00001893 _____ C:\AdwCleaner[R2].txt
2017-01-14 12:08 - 2017-01-14 12:08 - 00001638 _____ C:\Users\SNEK\Desktop\Recuva.lnk
2017-01-14 11:59 - 2017-01-14 12:00 - 00000000 ____D C:\rsit
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\YCanPDF
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\WinRAR
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\WinBatch
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\VSO
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Visan
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Thunderbird
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Symantec
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Sun
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Subtitle Edit
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Software602
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\LocalLow\Temp
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\LocalLow\Sun
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\LocalLow\Oracle
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\LocalLow\Mozilla
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\LocalLow\Hewlett-Packard
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\LocalLow\Google
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\LocalLow\AuthenTec
2017-01-14 11:57 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\LocalLow\Adobe
2017-01-14 11:57 - 2011-12-24 21:22 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Spyware Terminator
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Seznam.cz
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\PSpad
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Prison Break
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Popisovac
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Polda 6
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Philipp Winterberg
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Oracle
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\OpenOffice.org
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\OpenOffice
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\NVIDIA
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\NCH Software
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\MPC-HC
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Mp3tag
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Mozilla
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\mkvtoolnix
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Win7z
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\URUSoft
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenRA
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImTOO
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2017-01-14 11:56 - 2017-01-14 11:56 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FinePrint
2017-01-14 11:56 - 2016-12-04 15:14 - 00001053 _____ C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Volitelné funkce.lnk
2017-01-14 11:56 - 2014-06-22 17:46 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FBReader for Windows
2017-01-14 11:56 - 2012-11-11 10:54 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SubRip
2017-01-14 11:56 - 2012-04-27 17:24 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Real
2017-01-14 11:56 - 2012-03-17 09:42 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain
2017-01-14 11:56 - 2012-01-22 19:35 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avi2Dvd
2017-01-14 11:55 - 2017-01-14 13:15 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\CheckPoint
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Macromedia
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\JAM Software
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\ID3 renamer
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\ICQ
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\HpUpdate
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\hpqLog
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\HP Photo Creations
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\GoPro
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\GlarySoft
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\GetRightToGo
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\FreemakeVideoDownloader
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\fontconfig
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\FLV Extract
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\dvdcss
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\DVD Flick
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Dropbox
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\CyberLink
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Cuttermaran
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Creative
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Canneverbe Limited
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\calibre
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\AVS4YOU
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\avidemux
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Audacity
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Ashampoo
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\AnvSoft
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Ancestry
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Aegisub
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Acoustica
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\602XML
2017-01-14 11:55 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\602Installer
2017-01-14 11:55 - 2016-12-04 11:41 - 00099384 _____ C:\Users\TATULE\AppData\Roaming\inst.exe
2017-01-14 11:55 - 2016-12-04 11:41 - 00082816 _____ (VSO Software) C:\Users\TATULE\AppData\Roaming\pcouffin.sys
2017-01-14 11:55 - 2016-12-04 11:41 - 00007859 _____ C:\Users\TATULE\AppData\Roaming\pcouffin.cat
2017-01-14 11:55 - 2016-12-04 10:42 - 00001173 _____ C:\Users\TATULE\AppData\Roaming\vso_ts_preview.xml
2017-01-14 11:55 - 2016-10-23 15:22 - 00000021 _____ C:\Users\TATULE\AppData\Roaming\ISOWorkshop.ini
2017-01-14 11:53 - 2017-01-14 11:53 - 00000000 ____D C:\Users\TATULE\AppData\Local\Wondershare
2017-01-14 11:53 - 2017-01-14 11:53 - 00000000 ____D C:\Users\TATULE\AppData\Local\WindowsUpdate
2017-01-14 11:53 - 2017-01-14 11:53 - 00000000 ____D C:\Users\TATULE\AppData\Local\Windows Live
2017-01-14 11:53 - 2017-01-14 11:53 - 00000000 ____D C:\Users\TATULE\AppData\Local\Ubisoft Game Launcher
2017-01-14 11:53 - 2017-01-14 11:53 - 00000000 ____D C:\Users\TATULE\AppData\Local\Thunderbird
2017-01-14 11:53 - 2017-01-14 11:53 - 00000000 ____D C:\Users\TATULE\AppData\Local\The Witcher
2017-01-14 11:53 - 2017-01-07 18:44 - 00001008 _____ C:\Users\TATULE\AppData\Roaming\DVDSubEdit.ini
2017-01-14 11:53 - 2014-11-14 20:15 - 00000000 ____D C:\Users\TATULE\AppData\Local\{2E1A34E7-8503-40F6-AE48-317F6A57FBBC}
2017-01-14 11:53 - 2014-01-19 12:36 - 00000000 ____D C:\Users\TATULE\AppData\Local\{E777958C-F3D8-439F-A206-26D07B14FBB0}
2017-01-14 11:53 - 2013-04-07 11:51 - 00000000 ____D C:\Users\TATULE\AppData\Local\{49D64646-25D4-4F3B-BBA1-CC89E4101001}
2017-01-14 11:53 - 2013-03-01 18:35 - 00000000 ____D C:\Users\TATULE\AppData\Local\{369428D0-18F0-4109-AB0D-8F6F60DE41EC}
2017-01-14 11:53 - 2012-11-10 20:47 - 00000000 ____D C:\Users\TATULE\AppData\Local\{5AD22811-7FC1-4667-914E-281CE80A9C83}
2017-01-14 11:53 - 2012-11-04 20:01 - 00000000 ____D C:\Users\TATULE\AppData\Local\{2DFF9E6F-54B5-48CE-B445-A506A26B6754}
2017-01-14 11:53 - 2012-05-08 07:45 - 00000000 ____D C:\Users\TATULE\AppData\Local\{8927CA5D-7E8C-4DF4-8476-FC197D361387}
2017-01-14 11:53 - 2012-05-08 07:45 - 00000000 ____D C:\Users\TATULE\AppData\Local\{7503832D-856D-43CA-96D6-2ABD3436EBC8}
2017-01-14 11:53 - 2012-04-01 15:16 - 00000000 ____D C:\Users\TATULE\AppData\Local\{D5075668-DD23-4B5C-939B-FC207EEDCFC3}
2017-01-14 11:53 - 2012-04-01 15:16 - 00000000 ____D C:\Users\TATULE\AppData\Local\{594112FA-A31F-46AD-817B-3766377ABE49}
2017-01-14 11:53 - 2012-03-04 19:38 - 00000000 ____D C:\Users\TATULE\AppData\Local\{62A3E0EE-297C-47CA-9582-6431D8A075CA}
2017-01-14 11:53 - 2012-03-04 19:38 - 00000000 ____D C:\Users\TATULE\AppData\Local\{50357FC4-65B0-4E46-B86E-542B69B87D2F}
2017-01-14 11:51 - 2017-01-14 11:51 - 00000000 ____D C:\Users\TATULE\AppData\Local\SubtitleCreator
2017-01-14 11:51 - 2017-01-14 11:51 - 00000000 ____D C:\Users\TATULE\AppData\Local\RemEngine
2017-01-14 11:51 - 2015-12-24 17:30 - 00000000 ____D C:\Users\TATULE\AppData\Local\Skype
2017-01-14 11:51 - 2015-08-02 09:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\PeerDistRepub
2017-01-14 11:51 - 2012-04-27 17:24 - 00000000 ____D C:\Users\TATULE\AppData\Local\Real
2017-01-14 11:50 - 2017-01-14 11:50 - 00000000 ____D C:\Users\TATULE\AppData\Local\Mozilla Firefox
2017-01-14 11:45 - 2017-01-14 11:50 - 00000000 ____D C:\Users\TATULE\AppData\Local\Mozilla
2017-01-14 11:45 - 2017-01-14 11:45 - 00000000 ____D C:\Users\TATULE\AppData\Local\MicrosoftEdge
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\M-Photo_Ltd
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\Macromedia
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\Jiri_Cincura_-_x2develop
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\Innovative Solutions
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\ImTOO
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\HP
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\Hewlett-Packard_Company
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\Hewlett-Packard
2017-01-14 11:44 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\GWX
2017-01-14 11:44 - 2012-05-12 13:47 - 00000000 ____D C:\Users\TATULE\AppData\Local\Irrational Games
2017-01-14 11:43 - 2017-01-14 11:44 - 00000000 ____D C:\Users\TATULE\AppData\Local\GoPro
2017-01-14 11:43 - 2017-01-14 11:43 - 00000000 ____D C:\Users\TATULE\AppData\Local\GARMIN_Corp
2017-01-14 11:42 - 2017-01-14 11:43 - 00000000 ____D C:\Users\TATULE\AppData\Local\Garmin
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\GalaxyCommunicationService
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\fontconfig
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\EmieBrowserModeList
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\Dropbox
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\Downloaded Installations
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\CrashDumps
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\Comodo
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\Comms
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\CEF
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\calibre-cache
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\bunkus.org
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\AuthenTec
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\ashampoo
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\Apps\2.0
2017-01-14 11:42 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\Adobe
2017-01-14 11:42 - 2016-12-16 22:24 - 00000000 ____D C:\Users\TATULE\AppData\Local\ElevatedDiagnostics
2017-01-14 11:42 - 2016-11-22 12:12 - 00058168 _____ C:\Users\TATULE\AppData\Local\GDIPFONTCACHEV1.DAT
2017-01-14 11:42 - 2016-10-26 19:05 - 00006144 _____ C:\Users\TATULE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-01-14 11:42 - 2015-11-12 22:05 - 00000000 ____D C:\Users\TATULE\AppData\Local\ActiveSync
2017-01-14 11:42 - 2015-08-14 20:00 - 00000000 ____D C:\Users\TATULE\AppData\Local\EmieUserList
2017-01-14 11:42 - 2015-08-14 20:00 - 00000000 ____D C:\Users\TATULE\AppData\Local\EmieSiteList
2017-01-14 11:40 - 2017-01-14 11:57 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Skype
2017-01-14 11:40 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Hewlett-Packard
2017-01-14 11:40 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Garmin
2017-01-14 11:40 - 2017-01-14 11:43 - 00000000 ____D C:\Users\TATULE\AppData\Local\Garmin_Ltd._or_its_subsid
2017-01-14 11:40 - 2017-01-14 11:40 - 00000000 ___RD C:\Users\TATULE\OneDrive
2017-01-14 11:40 - 2017-01-14 11:40 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\AVAST Software
2017-01-14 11:40 - 2016-09-22 17:41 - 00002429 _____ C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-14 11:39 - 2017-01-14 11:51 - 00000000 ____D C:\Users\TATULE\AppData\Local\PDFC
2017-01-14 11:38 - 2017-01-14 11:50 - 00000000 ____D C:\Users\TATULE\AppData\Local\NVIDIA Corporation
2017-01-14 11:38 - 2017-01-14 11:38 - 00000000 ____D C:\Users\TATULE\AppData\Local\Publishers
2017-01-14 11:37 - 2017-01-14 11:55 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Adobe
2017-01-14 11:37 - 2017-01-14 11:53 - 00000000 ____D C:\Users\TATULE\AppData\Local\VirtualStore
2017-01-14 11:37 - 2017-01-14 11:51 - 00000000 ____D C:\Users\TATULE\AppData\Local\Packages
2017-01-14 11:37 - 2017-01-14 11:50 - 00000000 ____D C:\Users\TATULE\AppData\Local\NVIDIA
2017-01-14 11:36 - 2017-01-14 13:59 - 00000000 ____D C:\Users\TATULE
2017-01-14 11:36 - 2017-01-14 11:45 - 00000000 ____D C:\Users\TATULE\AppData\Local\Microsoft Help
2017-01-14 11:36 - 2017-01-14 11:43 - 00000000 ____D C:\Users\TATULE\AppData\Local\Google
2017-01-14 11:36 - 2017-01-14 11:42 - 00000000 ____D C:\Users\TATULE\AppData\Local\ConnectedDevicesPlatform
2017-01-14 11:36 - 2017-01-14 11:36 - 00002338 _____ C:\Users\TATULE\Desktop\Google Chrome.lnk
2017-01-14 11:36 - 2017-01-14 11:36 - 00000020 ___SH C:\Users\TATULE\ntuser.ini
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Šablony
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Soubory cookie
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Poslední
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Okolní tiskárny
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Okolní síť
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Nabídka Start
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Dokumenty
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Documents\Obrázky
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Documents\Hudba
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Documents\Filmy
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\Data aplikací
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 _SHDL C:\Users\TATULE\AppData\Local\Data aplikací
2017-01-14 11:36 - 2017-01-14 11:36 - 00000000 ____D C:\Users\TATULE\AppData\Local\TileDataLayer
2017-01-14 11:36 - 2016-09-21 21:58 - 00000000 ____D C:\Users\TATULE\AppData\Roaming\Media Center Programs
2017-01-14 11:36 - 2016-09-21 21:58 - 00000000 ____D C:\Users\TATULE\AppData\LocalGoogle
2017-01-13 19:10 - 2017-01-13 19:17 - 00065024 ___SH C:\Users\MAMULE\Desktop\Thumbs.db
2017-01-13 15:59 - 2017-01-13 15:59 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-01-12 18:45 - 2017-01-14 10:35 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\GlarySoft
2017-01-12 18:45 - 2017-01-14 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
2017-01-12 18:45 - 2017-01-14 10:31 - 00000000 ____D C:\Program Files (x86)\Glarysoft
2017-01-12 18:45 - 2017-01-12 18:45 - 00001334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Repair.lnk
2017-01-12 18:45 - 2017-01-12 18:45 - 00001322 _____ C:\Users\Public\Desktop\Registry Repair.lnk
2017-01-11 21:43 - 2017-01-11 21:43 - 00001399 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk
2017-01-11 20:49 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-01-11 20:49 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-01-11 20:49 - 2016-12-21 06:03 - 00136544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqmigplugin.dll
2017-01-11 20:49 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-01-11 20:49 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-01-11 20:49 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-01-11 20:49 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-01-11 20:49 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-01-11 20:49 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-01-11 20:48 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-01-11 20:48 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-11 20:48 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-01-11 20:48 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-01-11 20:48 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-01-11 20:48 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-01-11 20:48 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-01-11 20:48 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-01-11 20:48 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-01-11 20:48 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-01-11 20:48 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-11 20:48 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-11 20:48 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-11 20:48 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-01-11 20:48 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-01-11 20:48 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-01-11 20:48 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-01-11 20:48 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-01-11 20:48 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-01-11 20:48 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-01-11 20:48 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-01-11 20:48 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-01-11 20:48 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-01-11 20:48 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-01-11 20:48 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-01-11 20:48 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-01-11 20:48 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-01-11 20:48 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-01-11 20:48 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-01-11 20:48 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-01-11 20:48 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-01-11 20:48 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-01-11 20:48 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-01-11 20:48 - 2016-12-14 06:26 - 01469792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-01-11 20:48 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-01-11 20:48 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-01-11 20:48 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-01-11 20:48 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-01-11 20:48 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-01-11 20:48 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-01-11 20:48 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-11 20:48 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-01-11 20:48 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-01-11 20:48 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 20:48 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-01-11 20:48 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-11 20:48 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-01-11 20:48 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-01-11 20:48 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-01-11 20:48 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-01-11 20:48 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-01-11 20:48 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-01-11 20:48 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-01-11 20:48 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-01-11 20:48 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-01-11 20:45 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-01-11 20:45 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-01-11 20:45 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-01-11 20:45 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-01-11 20:45 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-01-11 20:45 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-01-11 20:45 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-01-11 20:45 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-01-11 20:45 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-11 20:45 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-01-11 20:45 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-01-11 20:45 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-01-11 20:45 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-01-11 20:45 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-01-11 20:45 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-01-11 20:45 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-01-11 20:45 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-01-11 20:45 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-01-11 20:45 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-01-11 20:45 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-01-11 20:45 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-01-11 20:45 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-01-11 20:45 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-01-11 20:45 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-01-11 20:45 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-01-11 20:45 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-01-11 20:45 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-01-11 20:45 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-01-11 20:45 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-01-11 20:45 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-01-11 20:45 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-01-11 20:45 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-01-11 20:45 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-01-11 20:45 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-01-11 20:45 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-01-11 20:45 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-01-11 20:45 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-01-11 20:45 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-01-11 20:45 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-01-11 20:45 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-01-11 20:45 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-01-11 20:45 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-01-11 20:45 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-01-11 20:45 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-01-11 20:45 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-01-11 20:45 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-01-11 20:44 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-01-11 20:44 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-01-11 20:44 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-01-11 20:44 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-01-11 20:44 - 2016-12-21 08:45 - 00153952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcmiplugin.dll
2017-01-11 20:44 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-01-11 20:44 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-01-11 20:44 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-01-11 20:44 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-01-11 20:44 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-01-11 20:44 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-01-11 20:44 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-01-11 20:44 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-01-11 20:44 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-01-11 20:44 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-01-11 20:44 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-01-11 20:44 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-01-11 20:44 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-01-11 20:44 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-01-11 20:44 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-01-11 20:44 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-01-11 20:44 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-01-11 20:44 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-01-11 20:44 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-01-11 20:44 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-01-11 20:44 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-01-11 20:44 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-01-11 20:44 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-01-11 20:44 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-01-11 20:44 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-01-11 20:44 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-01-11 20:44 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-01-11 20:44 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-01-11 20:44 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-01-11 20:44 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-01-11 20:44 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-01-11 20:44 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-01-11 20:44 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 02169184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 01669984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 01400160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-01-11 20:44 - 2016-12-14 06:33 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00992096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00822624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-01-11 20:44 - 2016-12-14 06:33 - 00813408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00779616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00752992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00571744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00513376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00406368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-01-11 20:44 - 2016-12-14 06:33 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2017-01-11 20:44 - 2016-12-14 06:33 - 00190816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2017-01-11 20:44 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-01-11 20:44 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-01-11 20:44 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-01-11 20:44 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 20:44 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-01-11 20:44 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-01-11 20:44 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-01-11 20:44 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-01-11 20:44 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-01-11 20:44 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-01-11 20:44 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-01-11 20:44 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-01-11 20:44 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-01-11 20:44 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-01-11 20:44 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-01-11 20:44 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-11 20:44 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-01-11 20:44 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-01-11 20:43 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-01-11 20:43 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-01-10 21:30 - 2017-01-14 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-01-09 19:08 - 2017-01-09 19:08 - 00053528 _____ C:\Users\SNEK\Downloads\The.Hills.Have.Eyes.1977.720p.BRRip.x264-x0r.srt
2017-01-09 19:08 - 2017-01-09 19:08 - 00044031 _____ C:\Users\SNEK\Downloads\The-Hills-Have-Eyes-(1977).srt
2017-01-09 18:38 - 2017-01-14 10:35 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\URUSoft
2017-01-09 18:37 - 2004-03-01 00:29 - 01094996 _____ C:\Users\SNEK\Downloads\SubtitleWorkshop251.exe
2017-01-09 18:34 - 2017-01-14 10:53 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop
2017-01-08 19:47 - 2017-01-14 10:56 - 00000000 ____D C:\Users\SNEK\Downloads\The Hills Have Eyes (1977) Hory mají oči.eng+cz titulky.horor
2017-01-07 18:44 - 2017-01-07 18:44 - 00001008 _____ C:\Users\SNEK\AppData\Roaming\DVDSubEdit.ini
2017-01-06 15:20 - 2017-01-06 15:20 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\AVS4YOU
2017-01-06 15:19 - 2017-01-06 15:31 - 00000000 ____D C:\Program Files (x86)\AVS4YOU
2017-01-06 15:19 - 2017-01-06 15:20 - 00000000 ____D C:\ProgramData\AVS4YOU
2017-01-06 15:19 - 2010-05-11 13:17 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll
2017-01-06 01:04 - 2017-01-06 01:04 - 00051504 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-01-06 00:48 - 2017-01-06 00:48 - 00075888 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-01-06 00:48 - 2017-01-06 00:48 - 00075888 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-01-06 00:48 - 2017-01-06 00:48 - 00075888 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-01-01 13:04 - 2017-01-14 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free
2017-01-01 13:04 - 2017-01-14 10:32 - 00000000 ____D C:\Program Files (x86)\JAM Software
2017-01-01 13:04 - 2017-01-01 13:04 - 00001300 _____ C:\Users\SNEK\Desktop\TreeSize Free.lnk
2017-01-01 13:04 - 2017-01-01 13:04 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\JAM Software
2016-12-29 08:02 - 2016-12-29 08:02 - 00001411 _____ C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2016-12-25 12:09 - 2017-01-14 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2016-12-25 09:49 - 2016-12-25 09:49 - 00524288 ___SH C:\Users\Default.migrated\NtUser.Dat{f6b5d840-ca7e-11e6-9ced-3860773e0d4d}.TMContainer00000000000000000002.regtrans-ms
2016-12-25 09:49 - 2016-12-25 09:49 - 00524288 ___SH C:\Users\Default.migrated\NtUser.Dat{f6b5d840-ca7e-11e6-9ced-3860773e0d4d}.TMContainer00000000000000000001.regtrans-ms
2016-12-25 09:49 - 2016-12-25 09:49 - 00065536 ___SH C:\Users\Default.migrated\NtUser.Dat{f6b5d840-ca7e-11e6-9ced-3860773e0d4d}.TM.blf
2016-12-25 09:49 - 2016-12-25 09:49 - 00008192 ___SH C:\Users\Default.migrated\NtUser.Dat.LOG1
2016-12-25 09:49 - 2016-12-25 09:49 - 00008192 _____ C:\Users\Default.migrated\NtUser.Dat
2016-12-25 09:49 - 2016-12-25 09:49 - 00000000 ___SH C:\Users\Default.migrated\NtUser.Dat.LOG2
2016-12-24 19:25 - 2016-12-24 19:37 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\GoPro
2016-12-24 19:25 - 2016-12-24 19:36 - 00000000 ____D C:\Users\Public\CineForm
2016-12-24 19:24 - 2017-01-14 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
2016-12-24 19:24 - 2016-12-31 16:03 - 00000000 ____D C:\Users\SNEK\AppData\Local\GoPro
2016-12-24 19:24 - 2016-12-24 19:24 - 00466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2016-12-24 19:24 - 2016-12-24 19:24 - 00444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2016-12-24 19:24 - 2016-12-24 19:24 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2016-12-24 19:24 - 2016-12-24 19:24 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2016-12-24 19:24 - 2016-12-24 19:24 - 00000846 _____ C:\Users\Public\Desktop\Quik.lnk
2016-12-24 19:24 - 2016-12-24 19:24 - 00000826 _____ C:\Users\Public\Desktop\GoPro Studio.lnk
2016-12-24 19:24 - 2016-12-24 19:24 - 00000000 ____D C:\Program Files\GoPro
2016-12-24 19:24 - 2016-12-24 19:24 - 00000000 ____D C:\Program Files (x86)\GoPro
2016-12-24 19:24 - 2016-12-24 19:24 - 00000000 ____D C:\Program Files (x86)\CineForm
2016-12-24 15:07 - 2016-12-24 15:07 - 00003276 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-23 08:02 - 2016-12-23 08:02 - 00036964 _____ C:\WINDOWS\DPINST.LOG
2016-12-23 08:02 - 2016-12-23 08:02 - 00002759 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Device Recovery Tool.lnk
2016-12-23 08:02 - 2016-12-23 08:02 - 00002747 _____ C:\Users\Public\Desktop\Windows Device Recovery Tool.lnk
2016-12-23 08:02 - 2016-12-23 08:02 - 00000000 ____D C:\WINDOWS\SysWOW64\FFU Loader Driver
2016-12-23 08:02 - 2016-12-23 08:02 - 00000000 ____D C:\ProgramData\LGE
2016-12-23 08:02 - 2016-12-23 08:02 - 00000000 ____D C:\ProgramData\HTC
2016-12-23 08:02 - 2016-12-23 08:02 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-12-23 08:02 - 2016-12-23 08:02 - 00000000 ____D C:\Program Files (x86)\Microsoft Care Suite
2016-12-17 11:42 - 2016-12-17 11:42 - 00001054 _____ C:\Users\Public\Desktop\Mp3tag.lnk
2016-12-16 16:32 - 2016-12-16 16:33 - 00305837 _____ C:\Users\SNEK\Downloads\425634363_0_22Co_473_2016_2_01.pdf

DRUHÁ ČÁST LOGU:

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-01-14 16:39 - 2016-11-16 12:16 - 00000000 ____D C:\Users\SNEK\AppData\LocalLow\Mozilla
2017-01-14 16:22 - 2016-09-21 21:49 - 00000000 ____D C:\Users\SNEK
2017-01-14 16:07 - 2016-09-21 21:42 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-14 15:29 - 2016-09-21 22:12 - 00003232 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForSNEK
2017-01-14 15:29 - 2016-01-03 12:49 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForSNEK.job
2017-01-14 14:01 - 2013-03-09 14:07 - 00000000 ____D C:\Program Files\Recuva
2017-01-14 13:59 - 2016-09-21 22:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-14 13:59 - 2016-09-21 21:44 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-14 13:59 - 2011-12-24 19:49 - 00000000 ____D C:\Users\SNEK\AppData\LocalLow\AuthenTec
2017-01-14 13:59 - 2011-11-08 00:14 - 00000000 ____D C:\ProgramData\PDFC
2017-01-14 13:58 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-14 13:58 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-01-14 13:54 - 2015-07-29 21:33 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-14 13:15 - 2011-12-24 22:32 - 00000000 ____D C:\Users\MAMULE\AppData\Roaming\CheckPoint
2017-01-14 13:14 - 2011-12-24 21:09 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\CheckPoint
2017-01-14 13:13 - 2014-04-25 13:17 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\Dropbox
2017-01-14 13:12 - 2015-06-07 09:01 - 00000000 ____D C:\Users\SNEK\AppData\Local\Dropbox
2017-01-14 13:12 - 2014-04-25 13:18 - 00000000 ___RD C:\Users\SNEK\Dropbox
2017-01-14 11:59 - 2012-11-24 21:38 - 00000000 ____D C:\Program Files\trend micro
2017-01-14 11:42 - 2011-12-25 09:30 - 00000000 ____D C:\ProgramData\Skype
2017-01-14 11:15 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-14 10:55 - 2016-09-21 21:49 - 00000000 ____D C:\Users\MAMULE
2017-01-14 10:55 - 2016-09-21 21:49 - 00000000 ____D C:\Users\DefaultAppPool
2017-01-14 10:55 - 2016-07-16 23:30 - 00000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\Nui
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-14 10:55 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-14 10:55 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-14 10:55 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-01-14 10:55 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-01-14 10:55 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-01-14 10:55 - 2016-03-29 20:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-01-14 10:55 - 2016-01-16 15:06 - 00000000 ____D C:\Users\SNEK\Desktop\FILM EDIT
2017-01-14 10:55 - 2015-11-01 19:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Might and Magic VI [Ubisoft]
2017-01-14 10:55 - 2014-10-03 14:49 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2017-01-14 10:55 - 2014-06-22 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FBReader for Windows
2017-01-14 10:55 - 2013-04-07 10:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RonyaSoft CD DVD Label Maker
2017-01-14 10:55 - 2013-03-09 14:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2017-01-14 10:55 - 2012-12-09 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2017-01-14 10:55 - 2012-11-11 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubRip
2017-01-14 10:55 - 2012-05-08 09:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKVToolNix
2017-01-14 10:55 - 2012-03-17 09:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3Gain
2017-01-14 10:55 - 2012-01-22 19:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avi2Dvd
2017-01-14 10:55 - 2011-12-25 13:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Labels
2017-01-14 10:55 - 2011-12-25 09:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RarZilla Free Unrar
2017-01-14 10:55 - 2011-12-24 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2017-01-14 10:55 - 2011-12-24 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-01-14 10:55 - 2011-11-08 00:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2017-01-14 10:55 - 2011-11-08 00:14 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eReaders and Document Viewers
2017-01-14 10:55 - 2011-11-08 00:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2017-01-14 10:55 - 2011-11-08 00:09 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recovery Manager
2017-01-14 10:55 - 2011-11-08 00:06 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Help & Tools
2017-01-14 10:55 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-01-14 10:54 - 2016-09-21 22:12 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\setup
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\IME
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-01-14 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-01-14 10:54 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\SMI
2017-01-14 10:54 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\servicing
2017-01-14 10:54 - 2011-11-08 00:07 - 00000000 ____D C:\Program Files\IDT
2017-01-14 10:53 - 2016-12-08 16:56 - 00000000 ____D C:\Users\SNEK\Downloads\HOTOVÉ
2017-01-14 10:53 - 2016-11-30 17:53 - 00000000 ____D C:\Users\SNEK\Downloads\its a gift slovensky
2017-01-14 10:53 - 2016-11-28 18:10 - 00000000 ____D C:\Users\SNEK\Downloads\Jsem uprchlý slovensky
2017-01-14 10:53 - 2016-11-27 10:18 - 00000000 ____D C:\Users\SNEK\Downloads\Big Parade slovenske tit
2017-01-14 10:53 - 2016-09-21 21:44 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-01-14 10:53 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Help
2017-01-14 10:53 - 2016-05-10 18:24 - 00000000 ____D C:\Program Files (x86)\OpenRA
2017-01-14 10:53 - 2016-03-29 20:58 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-01-14 10:53 - 2015-12-20 16:17 - 00000000 ___RD C:\Users\SNEK\3D Objects
2017-01-14 10:53 - 2015-11-01 19:34 - 00000000 ____D C:\Users\SNEK\Downloads\mm6cz201
2017-01-14 10:53 - 2015-10-17 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2017-01-14 10:53 - 2015-08-02 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-14 10:53 - 2015-07-30 20:44 - 00000000 ____D C:\Users\SNEK\Documents\HpReg_Backup
2017-01-14 10:53 - 2015-07-25 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-01-14 10:53 - 2015-06-07 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2017-01-14 10:53 - 2015-01-08 18:08 - 00000000 ____D C:\Users\SNEK\Downloads\Yesterday (1985), Radoslaw Piwowarski - DVDRip
2017-01-14 10:53 - 2014-12-12 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2017-01-14 10:53 - 2014-12-06 17:44 - 00000000 ____D C:\Users\SNEK\Downloads\zero hour key gen+patch+crack
2017-01-14 10:53 - 2014-12-06 13:28 - 00000000 ____D C:\Users\SNEK\Downloads\C&C zero hour crack, patch
2017-01-14 10:53 - 2014-11-29 12:06 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\dvdcss
2017-01-14 10:53 - 2014-09-14 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2017-01-14 10:53 - 2014-01-19 13:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux
2017-01-14 10:53 - 2014-01-05 14:46 - 00000000 ____D C:\Users\MAMULE\AppData\Roaming\Seznam.cz
2017-01-14 10:53 - 2013-12-15 21:33 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-01-14 10:53 - 2013-12-15 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-01-14 10:53 - 2013-11-10 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo II
2017-01-14 10:53 - 2013-10-07 20:23 - 00000000 ____D C:\Users\SNEK\Documents\Command and Conquer Generals Data
2017-01-14 10:53 - 2013-09-15 18:28 - 00000000 ____D C:\Users\SNEK\Downloads\Duke Nukem PC Collection
2017-01-14 10:53 - 2013-09-15 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Doom
2017-01-14 10:53 - 2013-09-14 08:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-14 10:53 - 2013-08-25 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ant Movie Catalog
2017-01-14 10:53 - 2013-08-25 12:39 - 00000000 ____D C:\ProgramData\Ant Movie Catalog
2017-01-14 10:53 - 2013-08-25 12:07 - 00000000 ____D C:\Users\SNEK\Documents\EMDB
2017-01-14 10:53 - 2013-05-19 17:25 - 00000000 ___RD C:\Users\SNEK\Disk Google
2017-01-14 10:53 - 2013-05-19 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-01-14 10:53 - 2013-03-22 18:21 - 00000000 ____D C:\Users\SNEK\Documents\Command and Conquer Generals Zero Hour Data
2017-01-14 10:53 - 2012-12-29 10:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2017-01-14 10:53 - 2012-12-29 10:34 - 00000000 ____D C:\Program Files (x86)\Freemake
2017-01-14 10:53 - 2012-11-19 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Video Joiner
2017-01-14 10:53 - 2012-11-11 09:28 - 00000000 ____D C:\Users\SNEK\Documents\FormatFactory
2017-01-14 10:53 - 2012-08-19 12:00 - 00000000 ___RD C:\Users\SNEK\Documents\Scanned Documents
2017-01-14 10:53 - 2012-07-12 18:09 - 00000000 ____D C:\Users\SNEK\Documents\wolfram
2017-01-14 10:53 - 2012-07-12 18:04 - 00000000 ____D C:\Users\SNEK\Documents\1wolf14
2017-01-14 10:53 - 2012-05-09 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-01-14 10:53 - 2012-04-27 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The FilmMachine
2017-01-14 10:53 - 2012-04-16 19:04 - 00000000 ____D C:\Users\SNEK\Documents\Quick-PDF PDF to Image
2017-01-14 10:53 - 2012-02-18 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Subtitle Edit
2017-01-14 10:53 - 2012-02-17 19:34 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP
2017-01-14 10:53 - 2012-02-17 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Flick
2017-01-14 10:53 - 2012-02-11 15:46 - 00000000 ____D C:\Users\SNEK\Documents\Gothic3ForsakenGods
2017-01-14 10:53 - 2012-02-04 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2017-01-14 10:53 - 2012-01-22 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2017-01-14 10:53 - 2012-01-15 11:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gothic 3 Interactive Map (G3iMap)
2017-01-14 10:53 - 2011-12-26 09:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
2017-01-14 10:53 - 2011-12-25 17:39 - 00000000 ____D C:\Users\SNEK\Documents\gothic3
2017-01-14 10:53 - 2011-12-25 13:08 - 00000000 ____D C:\Users\SNEK\Documents\FinePrint soubory
2017-01-14 10:53 - 2011-12-24 23:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2017-01-14 10:53 - 2011-12-24 22:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-01-14 10:53 - 2011-12-24 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Organizer
2017-01-14 10:53 - 2011-12-24 21:40 - 00000000 ____D C:\Users\SNEK\Documents\HTC
2017-01-14 10:53 - 2011-12-24 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2012
2017-01-14 10:53 - 2011-12-24 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2017-01-14 10:53 - 2011-12-24 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2017-01-14 10:53 - 2011-12-24 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Uživatelské Příručky
2017-01-14 10:53 - 2011-11-08 00:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-01-14 10:45 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\registration
2017-01-14 10:35 - 2016-12-04 11:48 - 00000000 ____D C:\Users\SNEK\Documents\VSO ConvertXtoDVD 6.0.0.45 CZ + SK portable
2017-01-14 10:35 - 2014-03-20 20:50 - 00000000 ____D C:\Users\SNEK\AppData\LocalLow\Oracle
2017-01-14 10:35 - 2014-01-19 14:22 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\AnvSoft
2017-01-14 10:35 - 2012-12-03 19:38 - 00000000 ____D C:\Users\SNEK\Documents\Pracovní
2017-01-14 10:35 - 2012-08-19 12:00 - 00000000 ____D C:\Users\SNEK\Documents\Fax
2017-01-14 10:35 - 2012-02-18 18:41 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\Subtitle Edit
2017-01-14 10:35 - 2011-12-25 15:02 - 00000000 ____D C:\Users\SNEK\AppData\LocalLow\Sun
2017-01-14 10:35 - 2011-12-25 11:58 - 00000000 ____D C:\Users\SNEK\Documents\My Games
2017-01-14 10:34 - 2016-09-21 21:44 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-01-14 10:34 - 2015-08-05 18:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWooD Entertainment AG
2017-01-14 10:34 - 2014-08-15 15:56 - 00000000 ____D C:\ProgramData\Visan
2017-01-14 10:34 - 2013-04-01 13:28 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-14 10:34 - 2012-04-27 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Alternative
2017-01-14 10:34 - 2011-12-25 11:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-01-14 10:34 - 2011-12-24 19:49 - 00000000 ____D C:\Users\SNEK\AppData\Local\Hewlett-Packard
2017-01-14 10:33 - 2015-12-27 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-01-14 10:33 - 2014-12-06 17:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2017-01-14 10:33 - 2014-01-19 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnvSoft
2017-01-14 10:33 - 2012-11-24 13:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glorylogic
2017-01-14 10:33 - 2012-06-29 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2017-01-14 10:32 - 2016-09-21 21:44 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-01-14 10:31 - 2015-06-07 09:01 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-01-14 10:31 - 2011-12-24 23:57 - 00000000 ____D C:\Program Files (x86)\Garmin
2017-01-14 09:59 - 2011-11-08 00:17 - 00000000 ____D C:\ProgramData\truesuite
2017-01-13 21:12 - 2016-10-26 17:56 - 00000000 ____D C:\ProgramData\VSO
2017-01-13 14:52 - 2012-01-22 17:47 - 00000000 ____D C:\Program Files (x86)\URUSoft
2017-01-12 21:34 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-12 19:04 - 2012-01-22 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\URUSoft
2017-01-11 21:50 - 2016-09-21 22:12 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-01-11 21:49 - 2015-11-11 17:24 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-01-11 21:43 - 2012-12-29 10:34 - 00000000 ____D C:\ProgramData\Freemake
2017-01-11 21:20 - 2016-09-21 21:42 - 00266104 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-11 19:56 - 2013-08-14 06:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-11 19:53 - 2011-12-24 20:21 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-11 19:44 - 2016-10-30 17:54 - 00001965 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2017-01-11 19:44 - 2016-09-21 22:12 - 00003624 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2017-01-08 18:17 - 2013-07-23 19:43 - 00001228 _____ C:\Users\SNEK\Desktop\CDBurnerXP.lnk
2017-01-08 18:17 - 2012-02-17 19:34 - 00001180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2017-01-08 11:25 - 2016-03-06 10:04 - 00000981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2017-01-08 11:25 - 2016-03-06 10:04 - 00000975 _____ C:\Users\Public\Desktop\WinRAR.lnk
2017-01-07 18:50 - 2016-10-26 19:08 - 00000000 ____D C:\Program Files (x86)\AviSynth
2017-01-03 12:56 - 2011-12-24 21:18 - 00000000 ____D C:\VÝDAJE
2017-01-01 11:19 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-31 18:38 - 2015-02-02 21:56 - 00000000 ____D C:\NADA
2016-12-30 09:09 - 2016-11-22 11:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-12-30 09:09 - 2012-04-24 19:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-25 12:09 - 2015-12-31 15:20 - 00000000 ____D C:\GOG Games
2016-12-25 10:00 - 2015-12-27 15:16 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2016-12-25 09:49 - 2016-12-02 16:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-25 09:49 - 2015-10-30 07:28 - 00000000 ____D C:\Users\Default.migrated
2016-12-25 09:49 - 2012-12-16 19:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-12-24 19:25 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Public
2016-12-24 19:22 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-12-24 19:22 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-12-24 19:22 - 2014-08-14 20:52 - 00000000 ____D C:\Users\SNEK\AppData\Local\Adobe
2016-12-24 15:07 - 2015-07-29 21:37 - 00002435 _____ C:\Users\MAMULE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-24 15:07 - 2015-07-29 21:37 - 00000000 ___RD C:\Users\MAMULE\OneDrive
2016-12-24 15:06 - 2015-07-29 21:33 - 00000000 ____D C:\Users\MAMULE\AppData\Local\Packages
2016-12-23 08:05 - 2016-09-21 21:49 - 00000000 ____D C:\Users\SNEK\AppData\Local\Microsoft
2016-12-23 07:58 - 2013-04-12 17:11 - 00000000 ____D C:\ProgramData\Installations
2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-18 17:24 - 2011-12-25 11:06 - 00000000 ____D C:\Users\SNEK\AppData\Roaming\Mp3tag
2016-12-17 15:21 - 2016-09-21 22:12 - 00003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-17 15:21 - 2016-09-21 22:12 - 00003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-17 12:21 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\Logs
2016-12-17 11:42 - 2011-12-25 11:04 - 00000000 ____D C:\Program Files (x86)\Mp3tag
2016-12-16 22:48 - 2016-09-21 21:47 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{f5b135e6-4b48-11e6-80cb-e41d2d012050}.TMContainer00000000000000000001.regtrans-ms
2016-12-16 22:24 - 2011-12-25 15:55 - 00000000 ____D C:\Users\SNEK\AppData\Local\ElevatedDiagnostics
2016-12-16 15:22 - 2012-07-04 09:17 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-16 08:59 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\assembly
2016-12-16 08:54 - 2016-11-16 09:07 - 00000000 ____D C:\Users\SNEK\AppData\Local\Mozilla Firefox
2016-12-15 18:02 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-US
2016-12-15 18:02 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-US

==================== Files in the root of some directories =======

2011-11-08 00:16 - 2011-06-10 00:44 - 0002792 _____ () C:\Program Files\HP SimplePass 2011
2014-06-15 07:33 - 2016-05-21 12:36 - 0192000 _____ (Igor Pavlov) C:\Program Files (x86)\7zxa.dll
2014-06-15 07:33 - 2016-08-14 23:16 - 0102288 _____ () C:\Program Files (x86)\Ace32Loader.exe
2013-12-15 21:33 - 2016-08-14 23:15 - 0259072 _____ () C:\Program Files (x86)\Default.SFX
2013-12-15 21:33 - 2016-08-14 23:15 - 0306688 _____ () C:\Program Files (x86)\Default64.SFX
2013-12-15 21:33 - 2014-09-10 18:49 - 0000948 _____ () C:\Program Files (x86)\Descript.ion
2014-11-19 20:30 - 2014-11-19 20:30 - 6000640 _____ () C:\Program Files (x86)\GUTF058.tmp
2013-12-15 21:33 - 2014-05-22 20:31 - 0006880 _____ () C:\Program Files (x86)\License.txt
2013-12-15 21:33 - 2016-08-15 13:05 - 0003231 _____ () C:\Program Files (x86)\Order.htm
2013-12-15 21:33 - 2016-08-14 23:16 - 0597392 _____ (Alexander Roshal) C:\Program Files (x86)\Rar.exe
2013-12-15 21:33 - 2016-06-24 22:05 - 0102171 _____ () C:\Program Files (x86)\Rar.txt
2013-12-15 21:33 - 2016-08-14 23:16 - 0437136 _____ (Alexander Roshal) C:\Program Files (x86)\RarExt.dll
2013-12-15 21:33 - 2016-08-14 23:16 - 0368016 _____ (Alexander Roshal) C:\Program Files (x86)\RarExt32.dll
2013-12-15 21:33 - 2016-03-21 16:28 - 0001262 _____ () C:\Program Files (x86)\RarFiles.lst
2013-12-15 21:33 - 2013-12-15 21:33 - 0000020 _____ () C:\Program Files (x86)\rarnew.dat
2013-12-15 21:33 - 2013-01-11 20:13 - 0001284 _____ () C:\Program Files (x86)\ReadMe.txt
2014-06-15 07:33 - 2005-08-26 00:50 - 0077312 _____ () C:\Program Files (x86)\UNACEV2.DLL
2013-12-15 21:33 - 2016-08-14 23:16 - 0000443 _____ () C:\Program Files (x86)\Uninstall.lst
2013-12-15 21:33 - 2016-08-14 23:16 - 0401808 _____ (Alexander Roshal) C:\Program Files (x86)\UnRAR.exe
2013-12-15 21:33 - 2016-08-14 23:15 - 0055657 _____ () C:\Program Files (x86)\WhatsNew.txt
2013-12-15 21:33 - 2016-08-14 23:15 - 0261632 _____ (Alexander Roshal) C:\Program Files (x86)\WinCon.SFX
2013-12-15 21:33 - 2016-08-14 23:15 - 0307200 _____ (Alexander Roshal) C:\Program Files (x86)\WinCon64.SFX
2013-12-15 21:33 - 2016-08-14 23:16 - 0306828 _____ () C:\Program Files (x86)\WinRAR.chm
2013-12-15 21:33 - 2016-08-16 15:49 - 1551760 _____ (Alexander Roshal) C:\Program Files (x86)\WinRAR.exe
2013-12-15 21:33 - 2016-08-14 23:15 - 0204288 _____ () C:\Program Files (x86)\Zip.SFX
2013-12-15 21:33 - 2016-08-14 23:15 - 0231424 _____ () C:\Program Files (x86)\Zip64.SFX
2013-12-15 21:33 - 2013-12-15 21:33 - 0000022 _____ () C:\Program Files (x86)\zipnew.dat
2017-01-07 18:44 - 2017-01-07 18:44 - 0001008 _____ () C:\Users\SNEK\AppData\Roaming\DVDSubEdit.ini
2016-10-26 17:56 - 2016-12-04 11:41 - 0099384 _____ () C:\Users\SNEK\AppData\Roaming\inst.exe
2012-11-24 17:02 - 2016-10-23 15:22 - 0000021 _____ () C:\Users\SNEK\AppData\Roaming\ISOWorkshop.ini
2016-10-26 17:56 - 2016-12-04 11:41 - 0007859 _____ () C:\Users\SNEK\AppData\Roaming\pcouffin.cat
2016-10-26 17:56 - 2016-12-04 11:41 - 0001167 _____ () C:\Users\SNEK\AppData\Roaming\pcouffin.inf
2016-10-26 17:56 - 2016-12-04 11:41 - 0000055 _____ () C:\Users\SNEK\AppData\Roaming\pcouffin.log
2016-10-26 17:56 - 2016-12-04 11:41 - 0082816 _____ (VSO Software) C:\Users\SNEK\AppData\Roaming\pcouffin.sys
2016-11-17 11:00 - 2016-12-04 10:42 - 0001173 _____ () C:\Users\SNEK\AppData\Roaming\vso_ts_preview.xml
2016-04-10 14:46 - 2016-10-26 19:05 - 0006144 _____ () C:\Users\SNEK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-09-28 09:38 - 2012-09-28 09:38 - 0000041 ___SH () C:\ProgramData\.zreglib
2014-08-15 15:54 - 2014-08-15 15:54 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-01-18 18:21 - 2013-02-16 12:08 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

Some files in TEMP:
====================
C:\Users\SNEK\AppData\Local\Temp\FFSetupLatest.exe
C:\Users\SNEK\AppData\Local\Temp\FreemakeVideoConverterFull.exe
C:\Users\SNEK\AppData\Local\Temp\FreemakeVideoDownloaderFull.exe
C:\Users\SNEK\AppData\Local\Temp\GarminExpressInstaller.exe
C:\Users\SNEK\AppData\Local\Temp\VideoConverter.exe
C:\Users\SNEK\AppData\Local\Temp\VideoDownloader.exe
C:\Users\SNEK\AppData\Local\Temp\{CE0315AC-59CD-4FC0-955F-1FA780780315}-DropboxClient_16.4.29.exe
C:\Users\TATULE\AppData\Local\Temp\FFSetupLatest.exe
C:\Users\TATULE\AppData\Local\Temp\FreemakeVideoConverterFull.exe
C:\Users\TATULE\AppData\Local\Temp\FreemakeVideoDownloaderFull.exe
C:\Users\TATULE\AppData\Local\Temp\GarminExpressInstaller.exe
C:\Users\TATULE\AppData\Local\Temp\VideoConverter.exe
C:\Users\TATULE\AppData\Local\Temp\VideoDownloader.exe
C:\Users\TATULE\AppData\Local\Temp\{CE0315AC-59CD-4FC0-955F-1FA780780315}-DropboxClient_16.4.29.exe


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================

TreeSize Free V3.4.5 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.4.5 - JAM Software)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForSNEK.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\SNEK\Desktop" je 15 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Garmin Lifetime Updater
C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUTF058.tmp
C:\Users\SNEK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\SNEK\AppData\Local\Temp
C:\Users\TATULE\AppData\Local\Temp
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\...\Run: [BingSvc] => C:\Users\SNEK\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
C:\Users\SNEK\AppData\Local\Microsoft\BingSvc
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
GroupPolicy: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: No Name -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\mb5fzbnk.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\mb5fzbnk.default -> Bing
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll => No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\pdf.dll => No File
CHR Plugin: (Simple Pass 2011) - C:\Users\MAMULE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgfhihjicjofdejkbjgnjlaglaciobe\1.0_0\npwebsitelogon.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll => No File
CHR Plugin: (npFFApi) - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
U3 idsvc; no ImagePath
C:\Users\TATULE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Snad to prošlo, zase se mi to vrátilo do dočasného profilu, musel jsem restartovat 2x. Tady je log:

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-01-2017
Ran by SNEK (14-01-2017 18:11:52) Run:1
Running from C:\Users\SNEK\Desktop
Loaded Profiles: SNEK (Available Profiles: SNEK & MAMULE & TATULE & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\GUTF058.tmp
C:\Users\SNEK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\SNEK\AppData\Local\Temp
C:\Users\TATULE\AppData\Local\Temp
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\...\Run: [BingSvc] => C:\Users\SNEK\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
C:\Users\SNEK\AppData\Local\Microsoft\BingSvc
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
GroupPolicy: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1074238247-3953367479-3130915102-1000 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: No Name -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\mb5fzbnk.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\mb5fzbnk.default -> Bing
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll => No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\pdf.dll => No File
CHR Plugin: (Simple Pass 2011) - C:\Users\MAMULE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgfhihjicjofdejkbjgnjlaglaciobe\1.0_0\npwebsitelogon.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll => No File
CHR Plugin: (npFFApi) - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => No File
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
U3 idsvc; no ImagePath
C:\Users\TATULE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End
*****************

C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Program Files (x86)\GUTF058.tmp => moved successfully
C:\Users\SNEK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

"C:\Users\SNEK\AppData\Local\Temp" folder move:

Could not move "C:\Users\SNEK\AppData\Local\Temp" => Scheduled to move on reboot.

C:\Users\TATULE\AppData\Local\Temp => moved successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\Software\Microsoft\Windows\CurrentVersion\Run\\BingSvc => value removed successfully
C:\Users\SNEK\AppData\Local\Microsoft\BingSvc => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay => key removed successfully
HKCR\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => key not found.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Policies\Google => key removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => key removed successfully
HKCR\Wow6432Node\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => key not found.
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-1074238247-3953367479-3130915102-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => key removed successfully
HKCR\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} => key removed successfully
HKCR\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B} => key removed successfully
HKCR\Wow6432Node\CLSID\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value removed successfully
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => key not found.
Firefox SearchEngineOrder.3 removed successfully
Firefox SelectedSearchEngine removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.0 => key removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1 => key removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.2 => key removed successfully
C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll => not found.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\pdf.dll => not found.
C:\Users\MAMULE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgfhihjicjofdejkbjgnjlaglaciobe\1.0_0\npwebsitelogon.dll => not found.
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll => not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll => not found.
C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll => not found.
C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll => not found.
C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll => not found.
c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => key removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => key removed successfully
idsvc => service removed successfully
C:\Users\TATULE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 294161 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 57847383 B
Java, Flash, Steam htmlcache => 523 B
Windows/system/drivers => 234505953 B
Edge => 256024 B
Chrome => 9331434 B
Firefox => 296212862 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 22822 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 13848734 B
NetworkService => 5814792 B
SNEK => 770297081 B
MAMULE => 64520713 B
TATULE => 3179114 B
DefaultAppPool => 22822 B

RecycleBin => 11831613494 B
EmptyTemp: => 12.4 GB temporary data Removed.

================================

Smazáno. Zkuste obnovu systému k datu, kdy korketně fungoval.

Děkuji mockrát. Problém sice přetrvává, ale důležité je, že není způsobován nějakým virem. Najdu jiné řešení, přinejhorším smažu profil a vytvořím nový.
Ještě jednou díky.

JFK píše:Děkuji mockrát. Problém sice přetrvává, ale důležité je, že není způsobován nějakým virem. Najdu jiné řešení, přinejhorším smažu profil a vytvořím nový.
Ještě jednou díky.

To je samozřejmě možné. Jen nedokážu posoudit, zda se to stalo systémovou chybou, nebo něčím jiným. Virem toto způsobeno určitě nebylo.