dobrý den , prosím o preventivní prohlídku
Logfile of random's system information tool 1.10 (written by random/random)
Run by Libina at 2015-11-13 10:45:54
Microsoft Windows 10 Pro
System drive C: has 16 GB (26%) free of 60 GB
Total RAM: 2046 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:46:04, on 13.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15081.0_x86__8wekyb3d8bbwe\Video.UI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
D:\idm\RSIT.exe
C:\Program Files\trend micro\Libina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=l45 ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{cfbe151d-f98a-4ffd-aa98-322bfd2a8d01}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
--
End of file - 5804 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001Core.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001UA.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot
=========Mozilla firefox=========
ProfilePath - C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\extensions\
toolbar@centrumholdings.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-09-28 422936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-25 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-25 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 12111576]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\System32\OneDriveSetup.exe [2015-07-10 7805120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*Restore]
C:\Windows\System32\rstrui.exe [2015-07-10 242176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*WerKernelReporting]
C:\WINDOWS\SYSTEM32\WerFault.exe [2015-07-10 260960]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT]
Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-keylogger]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (cleanup)]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-03-17 748232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uninstall C:]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WheelMouse]
C:\ADVANC~1\wh_exec.exe [2000-01-01 147456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Libina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office Outlook 2007.lnk]
C:\Windows\INSTAL~1\{90120~2\outicon.exe [2015-11-13 845584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-13 10:45:54 ----D---- C:\rsit
2015-11-13 08:59:28 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2015-11-13 08:54:14 ----D---- C:\WINDOWS\$regcmp$
2015-11-11 08:16:28 ----D---- C:\Program Files\Adobe
2015-11-05 15:56:14 ----D---- C:\Program Files\Mozilla Firefox
2015-10-30 17:16:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-30 16:49:35 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-30 16:49:33 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-30 16:49:29 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 16:49:29 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-10-30 16:49:28 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 16:49:27 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 16:49:26 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 16:49:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 16:49:26 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 16:49:25 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-30 16:49:24 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-30 16:49:23 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-10-30 16:49:23 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 16:49:22 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 16:49:22 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-10-30 16:49:19 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-30 16:49:17 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 16:49:16 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-10-30 16:49:13 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-10-30 16:49:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 16:49:07 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-10-30 16:49:07 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-10-30 14:30:33 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-10-30 14:29:55 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-10-25 17:43:59 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-10-25 17:43:55 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-25 17:43:54 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-10-25 17:19:34 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-10-25 17:09:38 ----ASH---- C:\hiberfil.sys
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-10-25 16:59:50 ----SD---- C:\Users\Libina\AppData\Roaming\Microsoft
2015-10-25 16:58:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-25 16:55:44 ----D---- C:\WINDOWS\system32\RTCOM
2015-10-25 16:55:44 ----D---- C:\Program Files\Realtek
2015-10-25 16:54:53 ----D---- C:\WINDOWS\Prefetch
2015-10-25 16:53:42 ----ASH---- C:\swapfile.sys
2015-10-25 16:53:41 ----ASH---- C:\pagefile.sys
2015-10-25 16:52:23 ----DC---- C:\WINDOWS\Panther
2015-10-25 16:51:25 ----SHD---- C:\Recovery
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-25 16:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\jscript.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\XPSViewer
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\msmq
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-10-25 16:39:45 ----D---- C:\Program Files\Reference Assemblies
2015-10-25 16:39:45 ----D---- C:\Program Files\MSBuild
2015-10-25 16:39:45 ----D---- C:\inetpub
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-25 16:38:44 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-25 15:06:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-25 12:58:13 ----D---- C:\Users\Libina\AppData\Roaming\Sun
2015-10-25 11:29:19 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-10-25 11:29:18 ----A---- C:\WINDOWS\system32\WavesGUILib.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tosade.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\TepeqAPO.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tadefxapo2.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRRPTR.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRAPO.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\sltech32.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\slprp32.dll
2015-10-25 11:29:13 ----A---- C:\WINDOWS\system32\slcnt32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\sl3apo32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-10-25 11:29:03 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-10-25 11:28:53 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-10-25 11:28:52 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-10-25 11:28:49 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-10-25 11:28:47 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-25 11:28:46 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-25 11:28:44 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-10-25 11:28:41 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-25 11:28:40 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2015-10-25 11:28:32 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2015-10-25 11:28:27 ----A---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2015-10-25 11:28:26 ----A---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-25 11:28:24 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-10-25 11:28:22 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-10-25 11:28:21 ----A---- C:\WINDOWS\system32\ICEsoundAPO.dll
2015-10-25 11:28:10 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PREC32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PLFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PGFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-10-25 11:28:07 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-10-25 11:28:04 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-10-25 11:28:03 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-10-25 11:27:58 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\CX32APO.dll
2015-10-25 11:27:53 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-25 11:27:52 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AcpiServiceVnA.dll
2015-10-25 11:26:54 ----HD---- C:\Program Files\Temp
2015-10-25 11:26:48 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-10-17 12:47:55 ----D---- C:\Program Files\Common Files\SWF Studio
2015-10-17 12:46:23 ----D---- C:\Program Files\Disney Interactive
2015-10-17 12:45:54 ----A---- C:\WINDOWS\disney.ini
2015-10-17 12:45:52 ----A---- C:\WINDOWS\disneysy.ini
2015-10-16 13:29:44 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys
======List of files/folders modified in the last 1 month======
2015-11-13 10:46:04 ----D---- C:\Program Files\trend micro
2015-11-13 10:33:25 ----D---- C:\WINDOWS\Temp
2015-11-13 10:33:25 ----D---- C:\WINDOWS\System32
2015-11-13 10:23:36 ----D---- C:\WINDOWS\system32\config
2015-11-13 10:10:40 ----D---- C:\WINDOWS\WinSxS
2015-11-13 09:57:00 ----D---- C:\WINDOWS\system32\sru
2015-11-13 09:33:53 ----D---- C:\Program Files\Defraggler
2015-11-13 09:19:27 ----D---- C:\Program Files\WinRAR
2015-11-13 09:03:07 ----D---- C:\WINDOWS\AppReadiness
2015-11-13 09:00:53 ----D---- C:\WINDOWS\system32\drivers
2015-11-13 08:58:09 ----D---- C:\Windows
2015-11-13 08:57:12 ----D---- C:\WINDOWS\INF
2015-11-13 08:56:51 ----D---- C:\WINDOWS\debug
2015-11-13 08:56:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-13 08:55:23 ----SHD---- C:\WINDOWS\Installer
2015-11-13 08:55:08 ----D---- C:\ProgramData\Microsoft Help
2015-11-13 08:54:52 ----SHD---- C:\Boot
2015-11-13 08:53:20 ----D---- C:\WINDOWS\CbsTemp
2015-11-13 08:52:26 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-13 08:45:46 ----HD---- C:\Program Files\WindowsApps
2015-11-11 19:49:23 ----D---- C:\WINDOWS\system32\catroot2
2015-11-11 08:16:57 ----D---- C:\WINDOWS\system32\Tasks
2015-11-11 08:16:28 ----RD---- C:\Program Files
2015-11-11 08:16:28 ----D---- C:\Program Files\Common Files\Adobe
2015-11-11 08:16:23 ----D---- C:\ProgramData\Adobe
2015-11-11 08:03:02 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-10 20:06:42 ----D---- C:\Users\Libina\AppData\Roaming\AIMP3
2015-11-10 13:24:36 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2015-11-09 08:40:42 ----SHD---- C:\System Volume Information
2015-11-06 13:30:54 ----D---- C:\Program Files\Electronic Arts
2015-11-06 13:30:53 ----HD---- C:\Program Files\InstallShield Installation Information
2015-11-05 19:15:58 ----D---- C:\WINDOWS\rescache
2015-11-05 17:04:05 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-03 19:58:58 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2015-11-03 19:20:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-03 08:30:42 ----RD---- C:\WINDOWS\assembly
2015-11-02 14:30:08 ----D---- C:\WINDOWS\system32\cs-CZ
2015-11-02 14:30:06 ----D---- C:\WINDOWS\system32\appraiser
2015-11-02 14:29:14 ----D---- C:\WINDOWS\apppatch
2015-10-30 17:15:47 ----D---- C:\WINDOWS\Logs
2015-10-30 14:29:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-30 12:39:25 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-30 12:37:11 ----RD---- C:\Users
2015-10-26 18:13:00 ----HD---- C:\ProgramData
2015-10-26 18:08:38 ----D---- C:\WINDOWS\Tasks
2015-10-26 08:52:34 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-10-26 08:27:37 ----D---- C:\WINDOWS\AppCompat
2015-10-26 08:26:27 ----D---- C:\WINDOWS\system32\WDI
2015-10-25 19:09:50 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-25 18:38:04 ----D---- C:\WINDOWS\ModemLogs
2015-10-25 17:47:32 ----D---- C:\WINDOWS\OCR
2015-10-25 17:33:47 ----D---- C:\WINDOWS\system32\restore
2015-10-25 17:22:08 ----D---- C:\Program Files\Windows NT
2015-10-25 17:20:35 ----D---- C:\WINDOWS\Registration
2015-10-25 17:19:07 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-25 17:18:38 ----RSD---- C:\WINDOWS\Media
2015-10-25 17:15:15 ----D---- C:\WINDOWS\system32\wbem
2015-10-25 17:07:50 ----D---- C:\WINDOWS\system32\vbox
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\NDF
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\en-US
2015-10-25 17:07:48 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-25 17:07:46 ----D---- C:\WINDOWS\ShellNew
2015-10-25 17:07:45 ----RSD---- C:\WINDOWS\Fonts
2015-10-25 17:03:55 ----D---- C:\WINDOWS\system32\SPReview
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\oodag
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\migration
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\IME
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\EventProviders
2015-10-25 17:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-10-25 17:03:13 ----D---- C:\WINDOWS\system32\(app)
2015-10-25 17:03:12 ----D---- C:\WINDOWS\System
2015-10-25 17:03:11 ----D---- C:\WINDOWS\schemas
2015-10-25 17:03:11 ----D---- C:\WINDOWS\Resources
2015-10-25 17:02:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-10-25 17:02:56 ----D---- C:\WINDOWS\Help
2015-10-25 17:02:52 ----SD---- C:\ProgramData\Microsoft
2015-10-25 17:02:42 ----D---- C:\Program Files\Windows Mail
2015-10-25 17:02:40 ----D---- C:\Program Files\Microsoft.NET
2015-10-25 17:02:39 ----D---- C:\Program Files\HP
2015-10-25 17:02:38 ----D---- C:\Program Files\DVD Maker
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files\System
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-25 17:02:34 ----D---- C:\Program Files\AMD AVT
2015-10-25 17:01:29 ----D---- C:\WINDOWS\system32\Recovery
2015-10-25 17:01:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-25 16:58:23 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-25 16:47:56 ----SD---- C:\WINDOWS\system32\F12
2015-10-25 16:47:56 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-25 16:47:56 ----D---- C:\WINDOWS\system32\Boot
2015-10-25 16:47:56 ----D---- C:\WINDOWS\Provisioning
2015-10-25 16:47:56 ----D---- C:\WINDOWS\L2Schemas
2015-10-25 16:42:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\MUI
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-10-25 16:39:45 ----D---- C:\WINDOWS\PolicyDefinitions
2015-10-25 16:39:45 ----D---- C:\Program Files\Windows Media Player
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-10-25 16:39:17 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-10-25 16:39:11 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-10-25 16:39:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-10-25 16:05:45 ----RASH---- C:\BOOTSECT.BAK
2015-10-25 15:06:12 ----D---- C:\Program Files\Java
2015-10-20 17:07:37 ----D---- C:\Program Files\Internet Download Manager
2015-10-19 11:41:18 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2015-10-17 12:45:53 ----D---- C:\Program Files\Common Files\InstallShield
2015-10-16 14:31:28 ----D---- C:\Program Files\EA GAMES
2015-10-16 13:48:55 ----D---- C:\WINDOWS\system32\MRT
2015-10-16 13:40:45 ----A---- C:\WINDOWS\system32\MRT.exe
2015-10-15 07:50:08 ----D---- C:\Program Files\CCleaner
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-20 30616]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 MpKsl0539dd29;MpKsl0539dd29; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B083D1EA-8AD8-407B-88B3-BF0BC46870A0}\MpKsl0539dd29.sys [2015-11-13 39168]
R1 MpKsl82b1a32f;MpKsl82b1a32f; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{46DC04C7-AA74-452B-BD59-0A967C628A46}\MpKsl82b1a32f.sys [2015-10-30 39168]
R1 MpKslb33c56e6;MpKslb33c56e6; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B083D1EA-8AD8-407B-88B3-BF0BC46870A0}\MpKslb33c56e6.sys [2015-11-13 39168]
R1 tmcomm;tmcomm; C:\WINDOWS\system32\DRIVERS\tmcomm.sys [2015-05-29 303744]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2015-06-12 123968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW73.sys [2013-02-14 79872]
R3 BlueletAudio;@oem30.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-06-24 34312]
R3 BlueletSCOAudio;@oem68.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-06-24 27656]
R3 BT;@oem29.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys [2007-03-05 18320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3343832]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-10-25 130048]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-07-10 8704]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-10 492032]
R3 t_mouse.sys;@oem92.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
S0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S1 krnl_akl;Anti-keylogger Kernel Service; \??\C:\Windows\system32\drivers\krnl_akl.sys [2012-04-23 367824]
S1 oxser;@oem72.inf,%oxser.SVCDESC%;OX16C95x Serial port driver; C:\WINDOWS\system32\DRIVERS\oxser.sys [2003-04-29 51169]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-25 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-10-30 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 23256]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 51928]
S3 mvusbews;@oem33.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2013-01-24 47360]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-07-03 16024]
S3 ssudmdm;@oem79.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-10-30 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2011-05-11 99896]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-10-25 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Start BT in service;Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2008-03-19 51816]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 OneSyncSvc_Session2;Hostitel synchronizace_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-25 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2008-03-19 166520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-05-25 1064312]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 PimIndexMaintenanceSvc_Session2;Data kontaktů_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-07-03 1228504]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-07-03 660184]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prevence
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prevence
# AdwCleaner v5.020 - Logfile created 14/11/2015 at 21:02:12
# Updated 13/11/2015 by Xplode
# Database : 2015-11-13.3 [Server]
# Operating system : Windows 10 Pro (x86)
# Username : Libina - LIBINA
# Running from : C:\Users\Libina\Desktop\adwcleaner_5.020.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\_acestream_cache_
[-] Folder Deleted : C:\Users\Libina\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\Libina\AppData\LocalLow\.acestream
[-] Folder Deleted : C:\Users\Libina\AppData\Roaming\.acestream
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{00011268-E188-40DF-A514-835FCD78B1BF}]
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
***** [ Web browsers ] *****
[-] [C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "eShield Safe Web");
[-] [C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\shszqjk7.default\prefs.js] [Preference] Deleted : user_pref("network.hxxp.request.max-start-delay", 0);
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.sweetim.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ejocekekgcaldnmjngfdbmbeebcekelc
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mfhnkgpdlogbknkhlgdjlejeljbhflim
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C7].txt - [2421 bytes] ##########
# Updated 13/11/2015 by Xplode
# Database : 2015-11-13.3 [Server]
# Operating system : Windows 10 Pro (x86)
# Username : Libina - LIBINA
# Running from : C:\Users\Libina\Desktop\adwcleaner_5.020.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\_acestream_cache_
[-] Folder Deleted : C:\Users\Libina\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\Libina\AppData\LocalLow\.acestream
[-] Folder Deleted : C:\Users\Libina\AppData\Roaming\.acestream
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{00011268-E188-40DF-A514-835FCD78B1BF}]
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
***** [ Web browsers ] *****
[-] [C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "eShield Safe Web");
[-] [C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\shszqjk7.default\prefs.js] [Preference] Deleted : user_pref("network.hxxp.request.max-start-delay", 0);
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.sweetim.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ejocekekgcaldnmjngfdbmbeebcekelc
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mfhnkgpdlogbknkhlgdjlejeljbhflim
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C7].txt - [2421 bytes] ##########
d.a.p
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prevence
Logfile of random's system information tool 1.10 (written by random/random)
Run by Libina at 2015-11-14 21:37:21
Microsoft Windows 10 Pro
System drive C: has 14 GB (24%) free of 60 GB
Total RAM: 2046 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:37:30, on 14.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Libina\Desktop\RSIT.exe
C:\Program Files\trend micro\Libina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=l45 ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{cfbe151d-f98a-4ffd-aa98-322bfd2a8d01}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
--
End of file - 5306 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001Core.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001UA.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot
=========Mozilla firefox=========
ProfilePath - C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\extensions\
toolbar@centrumholdings.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-09-28 422936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-25 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-25 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 12111576]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\System32\OneDriveSetup.exe [2015-07-10 7805120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*Restore]
C:\Windows\System32\rstrui.exe [2015-07-10 242176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*WerKernelReporting]
C:\WINDOWS\SYSTEM32\WerFault.exe [2015-07-10 260960]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT]
Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-keylogger]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (cleanup)]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-03-17 748232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uninstall C:]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WheelMouse]
C:\ADVANC~1\wh_exec.exe [2000-01-01 147456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Libina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office Outlook 2007.lnk]
C:\Windows\INSTAL~1\{90120~2\outicon.exe [2015-11-14 845584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-13 10:45:54 ----D---- C:\rsit
2015-11-13 08:59:28 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2015-11-13 08:54:14 ----D---- C:\WINDOWS\$regcmp$
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-13 08:42:58 ----A---- C:\WINDOWS\system32\esent.dll
2015-11-13 08:42:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-11-13 08:42:56 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-11-13 08:42:54 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-11-13 08:42:52 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-11-13 08:42:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-11-13 08:42:43 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-11-13 08:42:42 ----A---- C:\WINDOWS\system32\jscript.dll
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 08:16:28 ----D---- C:\Program Files\Adobe
2015-11-05 15:56:14 ----D---- C:\Program Files\Mozilla Firefox
2015-10-30 17:16:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-30 14:30:33 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-10-30 14:29:55 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-10-25 17:43:59 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-10-25 17:43:55 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-25 17:43:54 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-10-25 17:19:34 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-10-25 17:09:38 ----ASH---- C:\hiberfil.sys
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-10-25 16:59:50 ----SD---- C:\Users\Libina\AppData\Roaming\Microsoft
2015-10-25 16:58:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-25 16:55:44 ----D---- C:\WINDOWS\system32\RTCOM
2015-10-25 16:55:44 ----D---- C:\Program Files\Realtek
2015-10-25 16:54:53 ----D---- C:\WINDOWS\Prefetch
2015-10-25 16:53:42 ----ASH---- C:\swapfile.sys
2015-10-25 16:53:41 ----ASH---- C:\pagefile.sys
2015-10-25 16:52:23 ----DC---- C:\WINDOWS\Panther
2015-10-25 16:51:25 ----SHD---- C:\Recovery
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-25 16:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\XPSViewer
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\msmq
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-10-25 16:39:45 ----D---- C:\Program Files\Reference Assemblies
2015-10-25 16:39:45 ----D---- C:\Program Files\MSBuild
2015-10-25 16:39:45 ----D---- C:\inetpub
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-25 16:38:44 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-25 15:06:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-25 12:58:13 ----D---- C:\Users\Libina\AppData\Roaming\Sun
2015-10-25 11:29:19 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-10-25 11:29:18 ----A---- C:\WINDOWS\system32\WavesGUILib.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tosade.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\TepeqAPO.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tadefxapo2.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRRPTR.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRAPO.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\sltech32.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\slprp32.dll
2015-10-25 11:29:13 ----A---- C:\WINDOWS\system32\slcnt32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\sl3apo32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-10-25 11:29:03 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-10-25 11:28:53 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-10-25 11:28:52 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-10-25 11:28:49 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-10-25 11:28:47 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-25 11:28:46 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-25 11:28:44 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-10-25 11:28:41 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-25 11:28:40 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2015-10-25 11:28:32 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2015-10-25 11:28:27 ----A---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2015-10-25 11:28:26 ----A---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-25 11:28:24 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-10-25 11:28:22 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-10-25 11:28:21 ----A---- C:\WINDOWS\system32\ICEsoundAPO.dll
2015-10-25 11:28:10 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PREC32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PLFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PGFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-10-25 11:28:07 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-10-25 11:28:04 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-10-25 11:28:03 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-10-25 11:27:58 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\CX32APO.dll
2015-10-25 11:27:53 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-25 11:27:52 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AcpiServiceVnA.dll
2015-10-25 11:26:54 ----HD---- C:\Program Files\Temp
2015-10-25 11:26:48 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-10-17 12:47:55 ----D---- C:\Program Files\Common Files\SWF Studio
2015-10-17 12:46:23 ----D---- C:\Program Files\Disney Interactive
2015-10-17 12:45:54 ----A---- C:\WINDOWS\disney.ini
2015-10-17 12:45:52 ----A---- C:\WINDOWS\disneysy.ini
2015-10-16 13:29:44 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys
======List of files/folders modified in the last 1 month======
2015-11-14 21:37:23 ----D---- C:\Program Files\trend micro
2015-11-14 21:28:22 ----D---- C:\WINDOWS\Temp
2015-11-14 21:28:22 ----D---- C:\WINDOWS\System32
2015-11-14 21:12:32 ----D---- C:\WINDOWS\AppReadiness
2015-11-14 21:02:51 ----D---- C:\WINDOWS\system32\sru
2015-11-14 21:02:12 ----D---- C:\AdwCleaner
2015-11-14 10:04:00 ----SHD---- C:\WINDOWS\Installer
2015-11-14 10:00:25 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-14 10:00:22 ----RD---- C:\WINDOWS\assembly
2015-11-14 09:54:19 ----D---- C:\WINDOWS\system32\config
2015-11-14 09:49:04 ----D---- C:\WINDOWS\WinSxS
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\appraiser
2015-11-14 09:46:17 ----D---- C:\WINDOWS\apppatch
2015-11-14 09:46:15 ----D---- C:\WINDOWS\system32\drivers
2015-11-14 09:46:13 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-14 07:59:01 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2015-11-14 06:49:17 ----D---- C:\ProgramData\Microsoft Help
2015-11-14 06:47:44 ----HD---- C:\Program Files\WindowsApps
2015-11-14 06:47:16 ----D---- C:\WINDOWS\CbsTemp
2015-11-14 06:45:20 ----D---- C:\WINDOWS\system32\MRT
2015-11-14 06:37:10 ----D---- C:\WINDOWS\debug
2015-11-14 06:37:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-13 19:02:54 ----D---- C:\Users\Libina\AppData\Roaming\AIMP3
2015-11-13 18:46:33 ----D---- C:\WINDOWS\INF
2015-11-13 09:33:53 ----D---- C:\Program Files\Defraggler
2015-11-13 09:19:27 ----D---- C:\Program Files\WinRAR
2015-11-13 08:58:09 ----D---- C:\Windows
2015-11-13 08:56:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-13 08:54:52 ----SHD---- C:\Boot
2015-11-11 19:49:23 ----D---- C:\WINDOWS\system32\catroot2
2015-11-11 08:16:57 ----D---- C:\WINDOWS\system32\Tasks
2015-11-11 08:16:28 ----RD---- C:\Program Files
2015-11-11 08:16:28 ----D---- C:\Program Files\Common Files\Adobe
2015-11-11 08:16:23 ----D---- C:\ProgramData\Adobe
2015-11-11 08:03:02 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-09 08:40:42 ----SHD---- C:\System Volume Information
2015-11-06 13:30:54 ----D---- C:\Program Files\Electronic Arts
2015-11-06 13:30:53 ----HD---- C:\Program Files\InstallShield Installation Information
2015-11-05 19:15:58 ----D---- C:\WINDOWS\rescache
2015-11-03 19:58:58 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2015-11-03 19:20:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-30 17:15:47 ----D---- C:\WINDOWS\Logs
2015-10-30 14:29:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-30 12:39:25 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-30 12:37:11 ----RD---- C:\Users
2015-10-26 18:13:00 ----HD---- C:\ProgramData
2015-10-26 18:08:38 ----D---- C:\WINDOWS\Tasks
2015-10-26 08:52:34 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-10-26 08:27:37 ----D---- C:\WINDOWS\AppCompat
2015-10-26 08:26:27 ----D---- C:\WINDOWS\system32\WDI
2015-10-25 19:09:50 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-25 18:38:04 ----D---- C:\WINDOWS\ModemLogs
2015-10-25 17:47:32 ----D---- C:\WINDOWS\OCR
2015-10-25 17:33:47 ----D---- C:\WINDOWS\system32\restore
2015-10-25 17:22:08 ----D---- C:\Program Files\Windows NT
2015-10-25 17:20:35 ----D---- C:\WINDOWS\Registration
2015-10-25 17:19:07 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-25 17:18:38 ----RSD---- C:\WINDOWS\Media
2015-10-25 17:15:15 ----D---- C:\WINDOWS\system32\wbem
2015-10-25 17:07:50 ----D---- C:\WINDOWS\system32\vbox
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\NDF
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\en-US
2015-10-25 17:07:48 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-25 17:07:46 ----D---- C:\WINDOWS\ShellNew
2015-10-25 17:07:45 ----RSD---- C:\WINDOWS\Fonts
2015-10-25 17:03:55 ----D---- C:\WINDOWS\system32\SPReview
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\oodag
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\migration
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\IME
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\EventProviders
2015-10-25 17:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-10-25 17:03:13 ----D---- C:\WINDOWS\system32\(app)
2015-10-25 17:03:12 ----D---- C:\WINDOWS\System
2015-10-25 17:03:11 ----D---- C:\WINDOWS\schemas
2015-10-25 17:03:11 ----D---- C:\WINDOWS\Resources
2015-10-25 17:02:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-10-25 17:02:56 ----D---- C:\WINDOWS\Help
2015-10-25 17:02:52 ----SD---- C:\ProgramData\Microsoft
2015-10-25 17:02:42 ----D---- C:\Program Files\Windows Mail
2015-10-25 17:02:40 ----D---- C:\Program Files\Microsoft.NET
2015-10-25 17:02:39 ----D---- C:\Program Files\HP
2015-10-25 17:02:38 ----D---- C:\Program Files\DVD Maker
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files\System
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-25 17:02:34 ----D---- C:\Program Files\AMD AVT
2015-10-25 17:01:29 ----D---- C:\WINDOWS\system32\Recovery
2015-10-25 17:01:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-25 16:58:23 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-25 16:47:56 ----SD---- C:\WINDOWS\system32\F12
2015-10-25 16:47:56 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-25 16:47:56 ----D---- C:\WINDOWS\system32\Boot
2015-10-25 16:47:56 ----D---- C:\WINDOWS\Provisioning
2015-10-25 16:47:56 ----D---- C:\WINDOWS\L2Schemas
2015-10-25 16:42:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\MUI
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-10-25 16:39:45 ----D---- C:\WINDOWS\PolicyDefinitions
2015-10-25 16:39:45 ----D---- C:\Program Files\Windows Media Player
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-10-25 16:39:17 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-10-25 16:39:11 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-10-25 16:39:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-10-25 16:05:45 ----RASH---- C:\BOOTSECT.BAK
2015-10-25 15:06:12 ----D---- C:\Program Files\Java
2015-10-20 17:07:37 ----D---- C:\Program Files\Internet Download Manager
2015-10-19 11:41:18 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2015-10-17 12:45:53 ----D---- C:\Program Files\Common Files\InstallShield
2015-10-16 14:31:28 ----D---- C:\Program Files\EA GAMES
2015-10-15 07:50:08 ----D---- C:\Program Files\CCleaner
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-20 30616]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 MpKslb46529e3;MpKslb46529e3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D0780C77-F563-4316-AD6B-1E15F78AD8F9}\MpKslb46529e3.sys [2015-11-14 39168]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2015-06-12 123968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW73.sys [2013-02-14 79872]
R3 BlueletAudio;@oem30.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-06-24 34312]
R3 BlueletSCOAudio;@oem68.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-06-24 27656]
R3 BT;@oem29.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys [2007-03-05 18320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3343832]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 23256]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-10-25 130048]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-07-10 8704]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-10 492032]
R3 t_mouse.sys;@oem92.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
S0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S1 krnl_akl;Anti-keylogger Kernel Service; \??\C:\Windows\system32\drivers\krnl_akl.sys [2012-04-23 367824]
S1 oxser;@oem72.inf,%oxser.SVCDESC%;OX16C95x Serial port driver; C:\WINDOWS\system32\DRIVERS\oxser.sys [2003-04-29 51169]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-25 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-10-30 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 51928]
S3 mvusbews;@oem33.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2013-01-24 47360]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-07-03 16024]
S3 ssudmdm;@oem79.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-10-30 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2011-05-11 99896]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-10-25 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Start BT in service;Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2008-03-19 51816]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 OneSyncSvc_Session2;Hostitel synchronizace_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-25 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2008-03-19 166520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-05-25 1064312]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 PimIndexMaintenanceSvc_Session2;Data kontaktů_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-07-03 1228504]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-07-03 660184]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc_Session2;Úložiště uživatelských dat_Session2; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
-----------------EOF-----------------
Run by Libina at 2015-11-14 21:37:21
Microsoft Windows 10 Pro
System drive C: has 14 GB (24%) free of 60 GB
Total RAM: 2046 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:37:30, on 14.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Libina\Desktop\RSIT.exe
C:\Program Files\trend micro\Libina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=l45 ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{cfbe151d-f98a-4ffd-aa98-322bfd2a8d01}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
--
End of file - 5306 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001Core.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001UA.job - C:\Users\Libina\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot
=========Mozilla firefox=========
ProfilePath - C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\extensions\
toolbar@centrumholdings.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-09-28 422936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-25 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-25 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 12111576]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\System32\OneDriveSetup.exe [2015-07-10 7805120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*Restore]
C:\Windows\System32\rstrui.exe [2015-07-10 242176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*WerKernelReporting]
C:\WINDOWS\SYSTEM32\WerFault.exe [2015-07-10 260960]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT]
Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-keylogger]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (cleanup)]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-03-17 748232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uninstall C:]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WheelMouse]
C:\ADVANC~1\wh_exec.exe [2000-01-01 147456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Libina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office Outlook 2007.lnk]
C:\Windows\INSTAL~1\{90120~2\outicon.exe [2015-11-14 845584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-13 10:45:54 ----D---- C:\rsit
2015-11-13 08:59:28 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2015-11-13 08:54:14 ----D---- C:\WINDOWS\$regcmp$
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-13 08:42:58 ----A---- C:\WINDOWS\system32\esent.dll
2015-11-13 08:42:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-11-13 08:42:56 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-11-13 08:42:54 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-11-13 08:42:52 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-11-13 08:42:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-11-13 08:42:43 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-11-13 08:42:42 ----A---- C:\WINDOWS\system32\jscript.dll
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 08:16:28 ----D---- C:\Program Files\Adobe
2015-11-05 15:56:14 ----D---- C:\Program Files\Mozilla Firefox
2015-10-30 17:16:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-30 14:30:33 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-10-30 14:29:55 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-10-25 17:43:59 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-10-25 17:43:55 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-25 17:43:54 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-10-25 17:19:34 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-10-25 17:09:38 ----ASH---- C:\hiberfil.sys
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-10-25 16:59:50 ----SD---- C:\Users\Libina\AppData\Roaming\Microsoft
2015-10-25 16:58:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-25 16:55:44 ----D---- C:\WINDOWS\system32\RTCOM
2015-10-25 16:55:44 ----D---- C:\Program Files\Realtek
2015-10-25 16:54:53 ----D---- C:\WINDOWS\Prefetch
2015-10-25 16:53:42 ----ASH---- C:\swapfile.sys
2015-10-25 16:53:41 ----ASH---- C:\pagefile.sys
2015-10-25 16:52:23 ----DC---- C:\WINDOWS\Panther
2015-10-25 16:51:25 ----SHD---- C:\Recovery
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-25 16:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\XPSViewer
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\msmq
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-10-25 16:39:45 ----D---- C:\Program Files\Reference Assemblies
2015-10-25 16:39:45 ----D---- C:\Program Files\MSBuild
2015-10-25 16:39:45 ----D---- C:\inetpub
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-25 16:38:44 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-25 15:06:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-25 12:58:13 ----D---- C:\Users\Libina\AppData\Roaming\Sun
2015-10-25 11:29:19 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-10-25 11:29:18 ----A---- C:\WINDOWS\system32\WavesGUILib.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tosade.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\TepeqAPO.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tadefxapo2.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRRPTR.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRAPO.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\sltech32.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\slprp32.dll
2015-10-25 11:29:13 ----A---- C:\WINDOWS\system32\slcnt32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\sl3apo32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-10-25 11:29:03 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-10-25 11:28:53 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-10-25 11:28:52 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-10-25 11:28:49 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-10-25 11:28:47 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-25 11:28:46 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-25 11:28:44 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-10-25 11:28:41 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-25 11:28:40 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2015-10-25 11:28:32 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2015-10-25 11:28:27 ----A---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2015-10-25 11:28:26 ----A---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-25 11:28:24 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-10-25 11:28:22 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-10-25 11:28:21 ----A---- C:\WINDOWS\system32\ICEsoundAPO.dll
2015-10-25 11:28:10 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PREC32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PLFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PGFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-10-25 11:28:07 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-10-25 11:28:04 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-10-25 11:28:03 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-10-25 11:27:58 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\CX32APO.dll
2015-10-25 11:27:53 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-25 11:27:52 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AcpiServiceVnA.dll
2015-10-25 11:26:54 ----HD---- C:\Program Files\Temp
2015-10-25 11:26:48 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-10-17 12:47:55 ----D---- C:\Program Files\Common Files\SWF Studio
2015-10-17 12:46:23 ----D---- C:\Program Files\Disney Interactive
2015-10-17 12:45:54 ----A---- C:\WINDOWS\disney.ini
2015-10-17 12:45:52 ----A---- C:\WINDOWS\disneysy.ini
2015-10-16 13:29:44 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys
======List of files/folders modified in the last 1 month======
2015-11-14 21:37:23 ----D---- C:\Program Files\trend micro
2015-11-14 21:28:22 ----D---- C:\WINDOWS\Temp
2015-11-14 21:28:22 ----D---- C:\WINDOWS\System32
2015-11-14 21:12:32 ----D---- C:\WINDOWS\AppReadiness
2015-11-14 21:02:51 ----D---- C:\WINDOWS\system32\sru
2015-11-14 21:02:12 ----D---- C:\AdwCleaner
2015-11-14 10:04:00 ----SHD---- C:\WINDOWS\Installer
2015-11-14 10:00:25 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-14 10:00:22 ----RD---- C:\WINDOWS\assembly
2015-11-14 09:54:19 ----D---- C:\WINDOWS\system32\config
2015-11-14 09:49:04 ----D---- C:\WINDOWS\WinSxS
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\appraiser
2015-11-14 09:46:17 ----D---- C:\WINDOWS\apppatch
2015-11-14 09:46:15 ----D---- C:\WINDOWS\system32\drivers
2015-11-14 09:46:13 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-14 07:59:01 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2015-11-14 06:49:17 ----D---- C:\ProgramData\Microsoft Help
2015-11-14 06:47:44 ----HD---- C:\Program Files\WindowsApps
2015-11-14 06:47:16 ----D---- C:\WINDOWS\CbsTemp
2015-11-14 06:45:20 ----D---- C:\WINDOWS\system32\MRT
2015-11-14 06:37:10 ----D---- C:\WINDOWS\debug
2015-11-14 06:37:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-13 19:02:54 ----D---- C:\Users\Libina\AppData\Roaming\AIMP3
2015-11-13 18:46:33 ----D---- C:\WINDOWS\INF
2015-11-13 09:33:53 ----D---- C:\Program Files\Defraggler
2015-11-13 09:19:27 ----D---- C:\Program Files\WinRAR
2015-11-13 08:58:09 ----D---- C:\Windows
2015-11-13 08:56:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-13 08:54:52 ----SHD---- C:\Boot
2015-11-11 19:49:23 ----D---- C:\WINDOWS\system32\catroot2
2015-11-11 08:16:57 ----D---- C:\WINDOWS\system32\Tasks
2015-11-11 08:16:28 ----RD---- C:\Program Files
2015-11-11 08:16:28 ----D---- C:\Program Files\Common Files\Adobe
2015-11-11 08:16:23 ----D---- C:\ProgramData\Adobe
2015-11-11 08:03:02 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-09 08:40:42 ----SHD---- C:\System Volume Information
2015-11-06 13:30:54 ----D---- C:\Program Files\Electronic Arts
2015-11-06 13:30:53 ----HD---- C:\Program Files\InstallShield Installation Information
2015-11-05 19:15:58 ----D---- C:\WINDOWS\rescache
2015-11-03 19:58:58 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2015-11-03 19:20:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-30 17:15:47 ----D---- C:\WINDOWS\Logs
2015-10-30 14:29:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-30 12:39:25 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-30 12:37:11 ----RD---- C:\Users
2015-10-26 18:13:00 ----HD---- C:\ProgramData
2015-10-26 18:08:38 ----D---- C:\WINDOWS\Tasks
2015-10-26 08:52:34 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-10-26 08:27:37 ----D---- C:\WINDOWS\AppCompat
2015-10-26 08:26:27 ----D---- C:\WINDOWS\system32\WDI
2015-10-25 19:09:50 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-25 18:38:04 ----D---- C:\WINDOWS\ModemLogs
2015-10-25 17:47:32 ----D---- C:\WINDOWS\OCR
2015-10-25 17:33:47 ----D---- C:\WINDOWS\system32\restore
2015-10-25 17:22:08 ----D---- C:\Program Files\Windows NT
2015-10-25 17:20:35 ----D---- C:\WINDOWS\Registration
2015-10-25 17:19:07 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-25 17:18:38 ----RSD---- C:\WINDOWS\Media
2015-10-25 17:15:15 ----D---- C:\WINDOWS\system32\wbem
2015-10-25 17:07:50 ----D---- C:\WINDOWS\system32\vbox
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\NDF
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\en-US
2015-10-25 17:07:48 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-25 17:07:46 ----D---- C:\WINDOWS\ShellNew
2015-10-25 17:07:45 ----RSD---- C:\WINDOWS\Fonts
2015-10-25 17:03:55 ----D---- C:\WINDOWS\system32\SPReview
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\oodag
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\migration
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\IME
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\EventProviders
2015-10-25 17:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-10-25 17:03:13 ----D---- C:\WINDOWS\system32\(app)
2015-10-25 17:03:12 ----D---- C:\WINDOWS\System
2015-10-25 17:03:11 ----D---- C:\WINDOWS\schemas
2015-10-25 17:03:11 ----D---- C:\WINDOWS\Resources
2015-10-25 17:02:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-10-25 17:02:56 ----D---- C:\WINDOWS\Help
2015-10-25 17:02:52 ----SD---- C:\ProgramData\Microsoft
2015-10-25 17:02:42 ----D---- C:\Program Files\Windows Mail
2015-10-25 17:02:40 ----D---- C:\Program Files\Microsoft.NET
2015-10-25 17:02:39 ----D---- C:\Program Files\HP
2015-10-25 17:02:38 ----D---- C:\Program Files\DVD Maker
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files\System
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-25 17:02:34 ----D---- C:\Program Files\AMD AVT
2015-10-25 17:01:29 ----D---- C:\WINDOWS\system32\Recovery
2015-10-25 17:01:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-25 16:58:23 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-25 16:47:56 ----SD---- C:\WINDOWS\system32\F12
2015-10-25 16:47:56 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-25 16:47:56 ----D---- C:\WINDOWS\system32\Boot
2015-10-25 16:47:56 ----D---- C:\WINDOWS\Provisioning
2015-10-25 16:47:56 ----D---- C:\WINDOWS\L2Schemas
2015-10-25 16:42:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\MUI
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-10-25 16:39:45 ----D---- C:\WINDOWS\PolicyDefinitions
2015-10-25 16:39:45 ----D---- C:\Program Files\Windows Media Player
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-10-25 16:39:17 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-10-25 16:39:11 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-10-25 16:39:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-10-25 16:05:45 ----RASH---- C:\BOOTSECT.BAK
2015-10-25 15:06:12 ----D---- C:\Program Files\Java
2015-10-20 17:07:37 ----D---- C:\Program Files\Internet Download Manager
2015-10-19 11:41:18 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2015-10-17 12:45:53 ----D---- C:\Program Files\Common Files\InstallShield
2015-10-16 14:31:28 ----D---- C:\Program Files\EA GAMES
2015-10-15 07:50:08 ----D---- C:\Program Files\CCleaner
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-20 30616]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 MpKslb46529e3;MpKslb46529e3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D0780C77-F563-4316-AD6B-1E15F78AD8F9}\MpKslb46529e3.sys [2015-11-14 39168]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2015-06-12 123968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW73.sys [2013-02-14 79872]
R3 BlueletAudio;@oem30.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-06-24 34312]
R3 BlueletSCOAudio;@oem68.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-06-24 27656]
R3 BT;@oem29.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys [2007-03-05 18320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3343832]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 23256]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-10-25 130048]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-07-10 8704]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-10 492032]
R3 t_mouse.sys;@oem92.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
S0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S1 krnl_akl;Anti-keylogger Kernel Service; \??\C:\Windows\system32\drivers\krnl_akl.sys [2012-04-23 367824]
S1 oxser;@oem72.inf,%oxser.SVCDESC%;OX16C95x Serial port driver; C:\WINDOWS\system32\DRIVERS\oxser.sys [2003-04-29 51169]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-25 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-10-30 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 51928]
S3 mvusbews;@oem33.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2013-01-24 47360]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-07-03 16024]
S3 ssudmdm;@oem79.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-10-30 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2011-05-11 99896]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-10-25 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Start BT in service;Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2008-03-19 51816]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 OneSyncSvc_Session2;Hostitel synchronizace_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-25 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2008-03-19 166520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-05-25 1064312]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 PimIndexMaintenanceSvc_Session2;Data kontaktů_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-07-03 1228504]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-07-03 660184]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc_Session2;Úložiště uživatelských dat_Session2; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
-----------------EOF-----------------
d.a.p
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001Core.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2238009666-4088943951-4243750297-1001UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prevence
Logfile of random's system information tool 1.10 (written by random/random)
Run by Libina at 2015-11-15 21:16:02
Microsoft Windows 10 Pro
System drive C: has 15 GB (24%) free of 60 GB
Total RAM: 2046 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:16:14, on 15.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\Users\Libina\Desktop\RSIT.exe
C:\Program Files\trend micro\Libina.exe
C:\WINDOWS\system32\svchost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=l45 ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{cfbe151d-f98a-4ffd-aa98-322bfd2a8d01}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
--
End of file - 5264 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot
=========Mozilla firefox=========
ProfilePath - C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\extensions\
toolbar@centrumholdings.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-09-28 422936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-25 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-25 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 12111576]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\System32\OneDriveSetup.exe [2015-07-10 7805120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*Restore]
C:\Windows\System32\rstrui.exe [2015-07-10 242176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*WerKernelReporting]
C:\WINDOWS\SYSTEM32\WerFault.exe [2015-07-10 260960]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT]
Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-keylogger]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (cleanup)]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-03-17 748232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uninstall C:]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WheelMouse]
C:\ADVANC~1\wh_exec.exe [2000-01-01 147456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Libina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office Outlook 2007.lnk]
C:\Windows\INSTAL~1\{90120~2\outicon.exe [2015-11-14 845584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-15 21:09:11 ----D---- C:\_OTM
2015-11-13 10:45:54 ----D---- C:\rsit
2015-11-13 08:59:28 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2015-11-13 08:54:14 ----D---- C:\WINDOWS\$regcmp$
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-13 08:42:58 ----A---- C:\WINDOWS\system32\esent.dll
2015-11-13 08:42:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-11-13 08:42:56 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-11-13 08:42:54 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-11-13 08:42:52 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-11-13 08:42:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-11-13 08:42:43 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-11-13 08:42:42 ----A---- C:\WINDOWS\system32\jscript.dll
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 08:16:28 ----D---- C:\Program Files\Adobe
2015-11-05 15:56:14 ----D---- C:\Program Files\Mozilla Firefox
2015-10-30 17:16:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-30 14:30:33 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-10-30 14:29:55 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-10-25 17:43:59 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-10-25 17:43:55 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-25 17:43:54 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-10-25 17:19:34 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-10-25 17:09:38 ----ASH---- C:\hiberfil.sys
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-10-25 16:59:50 ----SD---- C:\Users\Libina\AppData\Roaming\Microsoft
2015-10-25 16:58:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-25 16:55:44 ----D---- C:\WINDOWS\system32\RTCOM
2015-10-25 16:55:44 ----D---- C:\Program Files\Realtek
2015-10-25 16:54:53 ----D---- C:\WINDOWS\Prefetch
2015-10-25 16:53:42 ----ASH---- C:\swapfile.sys
2015-10-25 16:53:41 ----ASH---- C:\pagefile.sys
2015-10-25 16:52:23 ----DC---- C:\WINDOWS\Panther
2015-10-25 16:51:25 ----SHD---- C:\Recovery
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-25 16:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\XPSViewer
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\msmq
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-10-25 16:39:45 ----D---- C:\Program Files\Reference Assemblies
2015-10-25 16:39:45 ----D---- C:\Program Files\MSBuild
2015-10-25 16:39:45 ----D---- C:\inetpub
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-25 16:38:44 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-25 15:06:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-25 12:58:13 ----D---- C:\Users\Libina\AppData\Roaming\Sun
2015-10-25 11:29:19 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-10-25 11:29:18 ----A---- C:\WINDOWS\system32\WavesGUILib.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tosade.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\TepeqAPO.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tadefxapo2.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRRPTR.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRAPO.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\sltech32.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\slprp32.dll
2015-10-25 11:29:13 ----A---- C:\WINDOWS\system32\slcnt32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\sl3apo32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-10-25 11:29:03 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-10-25 11:28:53 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-10-25 11:28:52 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-10-25 11:28:49 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-10-25 11:28:47 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-25 11:28:46 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-25 11:28:44 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-10-25 11:28:41 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-25 11:28:40 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2015-10-25 11:28:32 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2015-10-25 11:28:27 ----A---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2015-10-25 11:28:26 ----A---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-25 11:28:24 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-10-25 11:28:22 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-10-25 11:28:21 ----A---- C:\WINDOWS\system32\ICEsoundAPO.dll
2015-10-25 11:28:10 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PREC32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PLFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PGFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-10-25 11:28:07 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-10-25 11:28:04 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-10-25 11:28:03 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-10-25 11:27:58 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\CX32APO.dll
2015-10-25 11:27:53 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-25 11:27:52 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AcpiServiceVnA.dll
2015-10-25 11:26:54 ----HD---- C:\Program Files\Temp
2015-10-25 11:26:48 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-10-17 12:47:55 ----D---- C:\Program Files\Common Files\SWF Studio
2015-10-17 12:46:23 ----D---- C:\Program Files\Disney Interactive
2015-10-17 12:45:54 ----A---- C:\WINDOWS\disney.ini
2015-10-17 12:45:52 ----A---- C:\WINDOWS\disneysy.ini
2015-10-16 13:29:44 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys
======List of files/folders modified in the last 1 month======
2015-11-15 21:16:11 ----D---- C:\Program Files\trend micro
2015-11-15 21:14:38 ----HD---- C:\Program Files\WindowsApps
2015-11-15 21:14:15 ----D---- C:\WINDOWS\AppReadiness
2015-11-15 21:14:10 ----D---- C:\WINDOWS\Temp
2015-11-15 21:14:07 ----D---- C:\WINDOWS\System32
2015-11-15 21:12:36 ----D---- C:\WINDOWS\system32\sru
2015-11-15 21:09:12 ----D---- C:\WINDOWS\Tasks
2015-11-15 21:08:28 ----SHD---- C:\System Volume Information
2015-11-14 21:02:12 ----D---- C:\AdwCleaner
2015-11-14 10:04:00 ----SHD---- C:\WINDOWS\Installer
2015-11-14 10:00:25 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-14 10:00:22 ----RD---- C:\WINDOWS\assembly
2015-11-14 09:54:19 ----D---- C:\WINDOWS\system32\config
2015-11-14 09:49:04 ----D---- C:\WINDOWS\WinSxS
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\appraiser
2015-11-14 09:46:17 ----D---- C:\WINDOWS\apppatch
2015-11-14 09:46:15 ----D---- C:\WINDOWS\system32\drivers
2015-11-14 09:46:13 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-14 07:59:01 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2015-11-14 06:49:17 ----D---- C:\ProgramData\Microsoft Help
2015-11-14 06:47:16 ----D---- C:\WINDOWS\CbsTemp
2015-11-14 06:45:20 ----D---- C:\WINDOWS\system32\MRT
2015-11-14 06:37:10 ----D---- C:\WINDOWS\debug
2015-11-14 06:37:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-13 19:02:54 ----D---- C:\Users\Libina\AppData\Roaming\AIMP3
2015-11-13 18:46:33 ----D---- C:\WINDOWS\INF
2015-11-13 09:33:53 ----D---- C:\Program Files\Defraggler
2015-11-13 09:19:27 ----D---- C:\Program Files\WinRAR
2015-11-13 08:58:09 ----D---- C:\Windows
2015-11-13 08:56:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-13 08:54:52 ----SHD---- C:\Boot
2015-11-11 19:49:23 ----D---- C:\WINDOWS\system32\catroot2
2015-11-11 08:16:57 ----D---- C:\WINDOWS\system32\Tasks
2015-11-11 08:16:28 ----RD---- C:\Program Files
2015-11-11 08:16:28 ----D---- C:\Program Files\Common Files\Adobe
2015-11-11 08:16:23 ----D---- C:\ProgramData\Adobe
2015-11-11 08:03:02 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-06 13:30:54 ----D---- C:\Program Files\Electronic Arts
2015-11-06 13:30:53 ----HD---- C:\Program Files\InstallShield Installation Information
2015-11-05 19:15:58 ----D---- C:\WINDOWS\rescache
2015-11-03 19:58:58 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2015-11-03 19:20:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-30 17:15:47 ----D---- C:\WINDOWS\Logs
2015-10-30 14:29:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-30 12:39:25 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-30 12:37:11 ----RD---- C:\Users
2015-10-26 18:13:00 ----HD---- C:\ProgramData
2015-10-26 08:52:34 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-10-26 08:27:37 ----D---- C:\WINDOWS\AppCompat
2015-10-26 08:26:27 ----D---- C:\WINDOWS\system32\WDI
2015-10-25 19:09:50 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-25 18:38:04 ----D---- C:\WINDOWS\ModemLogs
2015-10-25 17:47:32 ----D---- C:\WINDOWS\OCR
2015-10-25 17:33:47 ----D---- C:\WINDOWS\system32\restore
2015-10-25 17:22:08 ----D---- C:\Program Files\Windows NT
2015-10-25 17:20:35 ----D---- C:\WINDOWS\Registration
2015-10-25 17:19:07 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-25 17:18:38 ----RSD---- C:\WINDOWS\Media
2015-10-25 17:15:15 ----D---- C:\WINDOWS\system32\wbem
2015-10-25 17:07:50 ----D---- C:\WINDOWS\system32\vbox
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\NDF
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\en-US
2015-10-25 17:07:48 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-25 17:07:46 ----D---- C:\WINDOWS\ShellNew
2015-10-25 17:07:45 ----RSD---- C:\WINDOWS\Fonts
2015-10-25 17:03:55 ----D---- C:\WINDOWS\system32\SPReview
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\oodag
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\migration
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\IME
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\EventProviders
2015-10-25 17:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-10-25 17:03:13 ----D---- C:\WINDOWS\system32\(app)
2015-10-25 17:03:12 ----D---- C:\WINDOWS\System
2015-10-25 17:03:11 ----D---- C:\WINDOWS\schemas
2015-10-25 17:03:11 ----D---- C:\WINDOWS\Resources
2015-10-25 17:02:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-10-25 17:02:56 ----D---- C:\WINDOWS\Help
2015-10-25 17:02:52 ----SD---- C:\ProgramData\Microsoft
2015-10-25 17:02:42 ----D---- C:\Program Files\Windows Mail
2015-10-25 17:02:40 ----D---- C:\Program Files\Microsoft.NET
2015-10-25 17:02:39 ----D---- C:\Program Files\HP
2015-10-25 17:02:38 ----D---- C:\Program Files\DVD Maker
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files\System
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-25 17:02:34 ----D---- C:\Program Files\AMD AVT
2015-10-25 17:01:29 ----D---- C:\WINDOWS\system32\Recovery
2015-10-25 17:01:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-25 16:58:23 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-25 16:47:56 ----SD---- C:\WINDOWS\system32\F12
2015-10-25 16:47:56 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-25 16:47:56 ----D---- C:\WINDOWS\system32\Boot
2015-10-25 16:47:56 ----D---- C:\WINDOWS\Provisioning
2015-10-25 16:47:56 ----D---- C:\WINDOWS\L2Schemas
2015-10-25 16:42:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\MUI
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-10-25 16:39:45 ----D---- C:\WINDOWS\PolicyDefinitions
2015-10-25 16:39:45 ----D---- C:\Program Files\Windows Media Player
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-10-25 16:39:17 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-10-25 16:39:11 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-10-25 16:39:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-10-25 16:05:45 ----RASH---- C:\BOOTSECT.BAK
2015-10-25 15:06:12 ----D---- C:\Program Files\Java
2015-10-20 17:07:37 ----D---- C:\Program Files\Internet Download Manager
2015-10-19 11:41:18 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2015-10-17 12:45:53 ----D---- C:\Program Files\Common Files\InstallShield
2015-10-16 14:31:28 ----D---- C:\Program Files\EA GAMES
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-20 30616]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 MpKslb46529e3;MpKslb46529e3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D0780C77-F563-4316-AD6B-1E15F78AD8F9}\MpKslb46529e3.sys [2015-11-14 39168]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2015-06-12 123968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW73.sys [2013-02-14 79872]
R3 BlueletAudio;@oem30.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-06-24 34312]
R3 BlueletSCOAudio;@oem68.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-06-24 27656]
R3 BT;@oem29.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys [2007-03-05 18320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3343832]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 23256]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-10-25 130048]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-07-10 8704]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-10 492032]
R3 t_mouse.sys;@oem92.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
S0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S1 krnl_akl;Anti-keylogger Kernel Service; \??\C:\Windows\system32\drivers\krnl_akl.sys [2012-04-23 367824]
S1 oxser;@oem72.inf,%oxser.SVCDESC%;OX16C95x Serial port driver; C:\WINDOWS\system32\DRIVERS\oxser.sys [2003-04-29 51169]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-25 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-10-30 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 51928]
S3 mvusbews;@oem33.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2013-01-24 47360]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-07-03 16024]
S3 ssudmdm;@oem79.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-10-30 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 42848]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2011-05-11 99896]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-10-25 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Start BT in service;Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2008-03-19 51816]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-25 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2008-03-19 166520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-05-25 1064312]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-07-03 1228504]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-07-03 660184]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
-----------------EOF-----------------
Run by Libina at 2015-11-15 21:16:02
Microsoft Windows 10 Pro
System drive C: has 15 GB (24%) free of 60 GB
Total RAM: 2046 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:16:14, on 15.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskhostw.exe
C:\Users\Libina\Desktop\RSIT.exe
C:\Program Files\trend micro\Libina.exe
C:\WINDOWS\system32\svchost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/?gfe_rd=cr&ei=l45 ... gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{cfbe151d-f98a-4ffd-aa98-322bfd2a8d01}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
--
End of file - 5264 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot
=========Mozilla firefox=========
ProfilePath - C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\plugins\
nppdf32.dll
C:\Users\Libina\AppData\Roaming\Mozilla\Firefox\Profiles\3qbjd1ep.petr navrátil\extensions\
toolbar@centrumholdings.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-09-28 422936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-25 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-25 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 12111576]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\System32\OneDriveSetup.exe [2015-07-10 7805120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*Restore]
C:\Windows\System32\rstrui.exe [2015-07-10 242176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\*WerKernelReporting]
C:\WINDOWS\SYSTEM32\WerFault.exe [2015-07-10 260960]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 5]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT]
Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-keylogger]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\feedreader.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (cleanup)]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-03-17 748232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uninstall C:]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WheelMouse]
C:\ADVANC~1\wh_exec.exe [2000-01-01 147456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Libina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office Outlook 2007.lnk]
C:\Windows\INSTAL~1\{90120~2\outicon.exe [2015-11-14 845584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-15 21:09:11 ----D---- C:\_OTM
2015-11-13 10:45:54 ----D---- C:\rsit
2015-11-13 08:59:28 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2015-11-13 08:54:14 ----D---- C:\WINDOWS\$regcmp$
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-13 08:43:01 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-11-13 08:43:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-11-13 08:42:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-13 08:42:58 ----A---- C:\WINDOWS\system32\esent.dll
2015-11-13 08:42:57 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-11-13 08:42:56 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-11-13 08:42:54 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-11-13 08:42:52 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-13 08:42:51 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-11-13 08:42:50 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-11-13 08:42:49 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-11-13 08:42:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-11-13 08:42:47 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-11-13 08:42:46 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-11-13 08:42:45 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-13 08:42:44 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-11-13 08:42:43 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-11-13 08:42:42 ----A---- C:\WINDOWS\system32\jscript.dll
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-11-13 08:42:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 08:16:28 ----D---- C:\Program Files\Adobe
2015-11-05 15:56:14 ----D---- C:\Program Files\Mozilla Firefox
2015-10-30 17:16:02 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-30 14:30:33 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-10-30 14:29:55 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-10-25 17:43:59 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-10-25 17:43:55 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-25 17:43:54 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-10-25 17:19:34 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-10-25 17:09:38 ----ASH---- C:\hiberfil.sys
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-10-25 16:59:50 ----SD---- C:\Users\Libina\AppData\Roaming\Microsoft
2015-10-25 16:58:44 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-25 16:55:44 ----D---- C:\WINDOWS\system32\RTCOM
2015-10-25 16:55:44 ----D---- C:\Program Files\Realtek
2015-10-25 16:54:53 ----D---- C:\WINDOWS\Prefetch
2015-10-25 16:53:42 ----ASH---- C:\swapfile.sys
2015-10-25 16:53:41 ----ASH---- C:\pagefile.sys
2015-10-25 16:52:23 ----DC---- C:\WINDOWS\Panther
2015-10-25 16:51:25 ----SHD---- C:\Recovery
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-25 16:47:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-25 16:47:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-25 16:47:25 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-25 16:47:20 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-25 16:47:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-25 16:47:17 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-25 16:47:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-25 16:47:14 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\XPSViewer
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\msmq
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-10-25 16:39:45 ----D---- C:\Program Files\Reference Assemblies
2015-10-25 16:39:45 ----D---- C:\Program Files\MSBuild
2015-10-25 16:39:45 ----D---- C:\inetpub
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-25 16:38:45 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-25 16:38:44 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-25 15:06:59 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-25 12:58:13 ----D---- C:\Users\Libina\AppData\Roaming\Sun
2015-10-25 11:29:19 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-10-25 11:29:18 ----A---- C:\WINDOWS\system32\WavesGUILib.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tosade.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\TepeqAPO.dll
2015-10-25 11:29:17 ----A---- C:\WINDOWS\system32\tadefxapo2.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-10-25 11:29:16 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRRPTR.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRCOM.dll
2015-10-25 11:29:15 ----A---- C:\WINDOWS\system32\SRAPO.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\sltech32.dll
2015-10-25 11:29:14 ----A---- C:\WINDOWS\system32\slprp32.dll
2015-10-25 11:29:13 ----A---- C:\WINDOWS\system32\slcnt32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\sl3apo32.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-10-25 11:29:12 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-10-25 11:29:11 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-10-25 11:29:10 ----A---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-10-25 11:29:05 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-10-25 11:29:03 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-10-25 11:28:59 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-10-25 11:28:58 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-10-25 11:28:56 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-10-25 11:28:55 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-10-25 11:28:53 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-10-25 11:28:52 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-10-25 11:28:50 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-10-25 11:28:49 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-10-25 11:28:47 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-10-25 11:28:46 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-10-25 11:28:44 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2015-10-25 11:28:41 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-10-25 11:28:40 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2015-10-25 11:28:34 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2015-10-25 11:28:32 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2015-10-25 11:28:28 ----A---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2015-10-25 11:28:27 ----A---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2015-10-25 11:28:26 ----A---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-10-25 11:28:25 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-25 11:28:24 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-10-25 11:28:22 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-10-25 11:28:21 ----A---- C:\WINDOWS\system32\ICEsoundAPO.dll
2015-10-25 11:28:10 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PREC32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PLFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSU2PGFX32.dll
2015-10-25 11:28:09 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-10-25 11:28:08 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-10-25 11:28:07 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-10-25 11:28:06 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-10-25 11:28:04 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-10-25 11:28:03 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-10-25 11:27:58 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-10-25 11:27:57 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-10-25 11:27:55 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-10-25 11:27:54 ----A---- C:\WINDOWS\system32\CX32APO.dll
2015-10-25 11:27:53 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-25 11:27:52 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-10-25 11:27:51 ----A---- C:\WINDOWS\system32\AcpiServiceVnA.dll
2015-10-25 11:26:54 ----HD---- C:\Program Files\Temp
2015-10-25 11:26:48 ----A---- C:\WINDOWS\RtlExUpd.dll
2015-10-17 12:47:55 ----D---- C:\Program Files\Common Files\SWF Studio
2015-10-17 12:46:23 ----D---- C:\Program Files\Disney Interactive
2015-10-17 12:45:54 ----A---- C:\WINDOWS\disney.ini
2015-10-17 12:45:52 ----A---- C:\WINDOWS\disneysy.ini
2015-10-16 13:29:44 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys
======List of files/folders modified in the last 1 month======
2015-11-15 21:16:11 ----D---- C:\Program Files\trend micro
2015-11-15 21:14:38 ----HD---- C:\Program Files\WindowsApps
2015-11-15 21:14:15 ----D---- C:\WINDOWS\AppReadiness
2015-11-15 21:14:10 ----D---- C:\WINDOWS\Temp
2015-11-15 21:14:07 ----D---- C:\WINDOWS\System32
2015-11-15 21:12:36 ----D---- C:\WINDOWS\system32\sru
2015-11-15 21:09:12 ----D---- C:\WINDOWS\Tasks
2015-11-15 21:08:28 ----SHD---- C:\System Volume Information
2015-11-14 21:02:12 ----D---- C:\AdwCleaner
2015-11-14 10:04:00 ----SHD---- C:\WINDOWS\Installer
2015-11-14 10:00:25 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-14 10:00:22 ----RD---- C:\WINDOWS\assembly
2015-11-14 09:54:19 ----D---- C:\WINDOWS\system32\config
2015-11-14 09:49:04 ----D---- C:\WINDOWS\WinSxS
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-11-14 09:46:18 ----D---- C:\WINDOWS\system32\appraiser
2015-11-14 09:46:17 ----D---- C:\WINDOWS\apppatch
2015-11-14 09:46:15 ----D---- C:\WINDOWS\system32\drivers
2015-11-14 09:46:13 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-14 07:59:01 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2015-11-14 06:49:17 ----D---- C:\ProgramData\Microsoft Help
2015-11-14 06:47:16 ----D---- C:\WINDOWS\CbsTemp
2015-11-14 06:45:20 ----D---- C:\WINDOWS\system32\MRT
2015-11-14 06:37:10 ----D---- C:\WINDOWS\debug
2015-11-14 06:37:04 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-13 19:02:54 ----D---- C:\Users\Libina\AppData\Roaming\AIMP3
2015-11-13 18:46:33 ----D---- C:\WINDOWS\INF
2015-11-13 09:33:53 ----D---- C:\Program Files\Defraggler
2015-11-13 09:19:27 ----D---- C:\Program Files\WinRAR
2015-11-13 08:58:09 ----D---- C:\Windows
2015-11-13 08:56:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-13 08:54:52 ----SHD---- C:\Boot
2015-11-11 19:49:23 ----D---- C:\WINDOWS\system32\catroot2
2015-11-11 08:16:57 ----D---- C:\WINDOWS\system32\Tasks
2015-11-11 08:16:28 ----RD---- C:\Program Files
2015-11-11 08:16:28 ----D---- C:\Program Files\Common Files\Adobe
2015-11-11 08:16:23 ----D---- C:\ProgramData\Adobe
2015-11-11 08:03:02 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-06 13:30:54 ----D---- C:\Program Files\Electronic Arts
2015-11-06 13:30:53 ----HD---- C:\Program Files\InstallShield Installation Information
2015-11-05 19:15:58 ----D---- C:\WINDOWS\rescache
2015-11-03 19:58:58 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2015-11-03 19:20:11 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-30 17:15:47 ----D---- C:\WINDOWS\Logs
2015-10-30 14:29:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-30 12:39:25 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-30 12:37:11 ----RD---- C:\Users
2015-10-26 18:13:00 ----HD---- C:\ProgramData
2015-10-26 08:52:34 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-10-26 08:27:37 ----D---- C:\WINDOWS\AppCompat
2015-10-26 08:26:27 ----D---- C:\WINDOWS\system32\WDI
2015-10-25 19:09:50 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-25 18:38:04 ----D---- C:\WINDOWS\ModemLogs
2015-10-25 17:47:32 ----D---- C:\WINDOWS\OCR
2015-10-25 17:33:47 ----D---- C:\WINDOWS\system32\restore
2015-10-25 17:22:08 ----D---- C:\Program Files\Windows NT
2015-10-25 17:20:35 ----D---- C:\WINDOWS\Registration
2015-10-25 17:19:07 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-25 17:18:38 ----RSD---- C:\WINDOWS\Media
2015-10-25 17:15:15 ----D---- C:\WINDOWS\system32\wbem
2015-10-25 17:07:50 ----D---- C:\WINDOWS\system32\vbox
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\NDF
2015-10-25 17:07:49 ----D---- C:\WINDOWS\system32\en-US
2015-10-25 17:07:48 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-25 17:07:46 ----D---- C:\WINDOWS\ShellNew
2015-10-25 17:07:45 ----RSD---- C:\WINDOWS\Fonts
2015-10-25 17:03:55 ----D---- C:\WINDOWS\system32\SPReview
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\oodag
2015-10-25 17:03:52 ----D---- C:\WINDOWS\system32\migration
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\IME
2015-10-25 17:03:51 ----D---- C:\WINDOWS\system32\EventProviders
2015-10-25 17:03:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-10-25 17:03:13 ----D---- C:\WINDOWS\system32\(app)
2015-10-25 17:03:12 ----D---- C:\WINDOWS\System
2015-10-25 17:03:11 ----D---- C:\WINDOWS\schemas
2015-10-25 17:03:11 ----D---- C:\WINDOWS\Resources
2015-10-25 17:02:56 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-10-25 17:02:56 ----D---- C:\WINDOWS\Help
2015-10-25 17:02:52 ----SD---- C:\ProgramData\Microsoft
2015-10-25 17:02:42 ----D---- C:\Program Files\Windows Mail
2015-10-25 17:02:40 ----D---- C:\Program Files\Microsoft.NET
2015-10-25 17:02:39 ----D---- C:\Program Files\HP
2015-10-25 17:02:38 ----D---- C:\Program Files\DVD Maker
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files\System
2015-10-25 17:02:38 ----D---- C:\Program Files\Common Files
2015-10-25 17:02:37 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-25 17:02:34 ----D---- C:\Program Files\AMD AVT
2015-10-25 17:01:29 ----D---- C:\WINDOWS\system32\Recovery
2015-10-25 17:01:28 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-25 16:58:23 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-25 16:47:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-25 16:47:56 ----SD---- C:\WINDOWS\system32\F12
2015-10-25 16:47:56 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-25 16:47:56 ----D---- C:\WINDOWS\system32\Boot
2015-10-25 16:47:56 ----D---- C:\WINDOWS\Provisioning
2015-10-25 16:47:56 ----D---- C:\WINDOWS\L2Schemas
2015-10-25 16:42:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\MUI
2015-10-25 16:39:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-10-25 16:39:45 ----D---- C:\WINDOWS\PolicyDefinitions
2015-10-25 16:39:45 ----D---- C:\Program Files\Windows Media Player
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-10-25 16:39:39 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-10-25 16:39:32 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-10-25 16:39:24 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-10-25 16:39:20 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-10-25 16:39:19 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-10-25 16:39:17 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-10-25 16:39:11 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-10-25 16:39:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-10-25 16:05:45 ----RASH---- C:\BOOTSECT.BAK
2015-10-25 15:06:12 ----D---- C:\Program Files\Java
2015-10-20 17:07:37 ----D---- C:\Program Files\Internet Download Manager
2015-10-19 11:41:18 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2015-10-17 12:45:53 ----D---- C:\Program Files\Common Files\InstallShield
2015-10-16 14:31:28 ----D---- C:\Program Files\EA GAMES
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-20 30616]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 MpKslb46529e3;MpKslb46529e3; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D0780C77-F563-4316-AD6B-1E15F78AD8F9}\MpKslb46529e3.sys [2015-11-14 39168]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2015-06-12 123968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW73.sys [2013-02-14 79872]
R3 BlueletAudio;@oem30.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-06-24 34312]
R3 BlueletSCOAudio;@oem68.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-06-24 27656]
R3 BT;@oem29.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys [2007-03-05 18320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3343832]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 23256]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-10-25 130048]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-07-10 8704]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-10 492032]
R3 t_mouse.sys;@oem92.inf,%strDeviceHID%;HID-compliand device; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
S0 BtHidBus;Bluetooth HID Bus Service; C:\WINDOWS\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S1 krnl_akl;Anti-keylogger Kernel Service; \??\C:\Windows\system32\drivers\krnl_akl.sys [2012-04-23 367824]
S1 oxser;@oem72.inf,%oxser.SVCDESC%;OX16C95x Serial port driver; C:\WINDOWS\system32\DRIVERS\oxser.sys [2003-04-29 51169]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-25 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-10-30 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 51928]
S3 mvusbews;@oem33.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2013-01-24 47360]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-07-03 16024]
S3 ssudmdm;@oem79.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-10-30 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 42848]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2011-05-11 99896]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-10-25 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Start BT in service;Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2008-03-19 51816]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-25 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]
S3 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2008-03-19 166520]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-05-25 1064312]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-13 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-07-03 1228504]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-07-03 660184]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
-----------------EOF-----------------
d.a.p
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Smazáno, log je již OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prevence
Děkuji Vám . CHtěl bych se ještě zeptat jestli stačí to zabezpečení od microsoftu ( defender )
d.a.p
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Defender není plnohodnotný antivir. My ho doporučujeme kombinovat s některým z antivirů jiných výrobců: http://forum.viry.cz/viewforum.php?f=29 . Bude stačit pro home použití některý z free antivirů. Upozorňuji ale, že žádný, ani ten sebelepší, antivir vám nezabrání zavirování, pokud se nebudete při brouzdání na webu chovat obezřetně. Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?