PROSIM SURNE....Spomaleny notebook a velmi pomale uzatvaranie okien a priecinkov

Cely den nam notebook ide velmi pomaly a okna otvara a zatvara sko slimak. Nechaapem co sa deje,vcera bol ok. Prosim o radu ci pomoc. Notebook je zosietovany s extern.hardiskom NAS-kom a dalsim pc. Dakujem

Logfile of random's system information tool 1.10 (written by random/random)
Run by IaP2 at 2016-02-23 14:59:19
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 205 GB (71%) free of 289 GB
Total RAM: 3958 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:59:24, on 23. 2. 2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\IaP2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hppp&ts=1438930846&z=159d14a8ef5732aca4ab68cg7zec6bat7c9e2m4mbb&from=cor&uid=WDCXWD3200BEVT-60A23T0_WD-WXF1E61HXF34HXF34
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=dspp&ts=1438930846&z=159d14a8ef5732aca4ab68cg7zec6bat7c9e2m4mbb&from=cor&uid=WDCXWD3200BEVT-60A23T0_WD-WXF1E61HXF34HXF34&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=dspp&ts=1438930846&z=159d14a8ef5732aca4ab68cg7zec6bat7c9e2m4mbb&from=cor&uid=WDCXWD3200BEVT-60A23T0_WD-WXF1E61HXF34HXF34&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=http://www.istartsurf.com/?type=hppp&ts=1438930846&z=159d14a8ef5732aca4ab68cg7zec6bat7c9e2m4mbb&from=cor&uid=WDCXWD3200BEVT-60A23T0_WD-WXF1E61HXF34HXF34
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hppp&ts=1438930846&z=159d14a8ef5732aca4ab68cg7zec6bat7c9e2m4mbb&from=cor&uid=WDCXWD3200BEVT-60A23T0_WD-WXF1E61HXF34HXF34
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1438930812&z=d2d5a0dd6c8b6b8f0505471gbz2c6bctac9e8m0z1c&from=cor&uid=WDCXWD3200BEVT-60A23T0_WD-WXF1E61HXF34HXF34&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1438930812&z=d2d5a0dd6c8b6b8f0505471gbz2c6bctac9e8m0z1c&from=cor&uid=WDCXWD3200BEVT-60A23T0_WD-WXF1E61HXF34HXF34&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=http://www.istartsurf.com/?type=hppp&ts=1438930846&z=159d14a8ef5732aca4ab68cg7zec6bat7c9e2m4mbb&from=cor&uid=WDCXWD3200BEVT-60A23T0_WD-WXF1E61HXF34HXF34
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: (no name) - {1F91A9A1-01BA-4c81-863D-3BA0751E1419} - (no file)
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\IaP2\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun (User 'Default user')
O4 - Global Startup: Kaspersky Software Updater Beta.lnk = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe
O4 - Global Startup: SpyderUtility.lnk = C:\Program Files (x86)\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\F-Secure\Ultralight\ulcore\1455720833\fsorsp64.exe
O23 - Service: F-Secure Ultralight (fsulhoster) - F-Secure Corporation - C:\Program Files\F-Secure\Ultralight\ulcore\1455720833\fshoster64.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Kaspersky Security Scan Service (kss) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe

--
End of file - 15170 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 37415360
\??\C:\Windows\system32\conhost.exe "1414100777-1486927810155224318113788402811871999702-17393769611230086536452839344
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"taskhost.exe"
taskeng.exe {2C18EC1A-2216-4D1B-B9C0-3113B0308497}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\diMaster.dll" /prefetch:1
C:\Windows\SysWOW64\nlssrv32.exe
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe" /c /a /s UserSession
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3368
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Wireless Assistant</Title><Text>Bluetooth®: Disabled
WLAN: Disabled</Text><IconPath>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WA_tray_32_off.ico</IconPath><ID>1727846723</ID><Path>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe</Path><Parameters></Parameters></Toast></hpNotification>"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5260.0.1622830893\1258286493" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x1002 --gpu-device-id=0x68e4 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.810.4.3000 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\F-Secure\Ultralight\ulcore\1455720833\fsorsp64.exe"
"C:\Program Files\F-Secure\Ultralight\ulcore\1455720833\fshoster64.exe" -PointAppFamily:1400
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe" -setmachineId=FFFFCCF6-60A1-D3F3-5737-2CB36CB5CF18 -setbasestype=1 -settime -hide
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" -r
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" --type=gpu-process --channel="6844.0.1411046528\25261531" --no-sandbox --lang=en-US --log-severity=disable --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x1002 --gpu-device-id=0x68e4 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.810.4.3000 --lang=en-US --log-severity=disable /prefetch:822062411
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --locale=sk_SK
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-3d-apis --disable-databases --disable-direct-npapi-requests --disable-file-system --disable-notifications --disable-shared-workers --lang=en-US --lang=en-US --log-severity=disable --product-version="ReaderServices/15.10.20056 Chrome/45.0.2454.85" --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="1480.1.483882165\617020601" --allow-no-sandbox-job --font-cache-shared-handle=1196 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5260.7.1516045841\166267728" --font-cache-shared-handle=5568 /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe17_ Global\UsGthrCtrlFltPipeMssGthrPipe17 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524

"C:\Users\IaP2\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\HPCeeScheduleForIaP2.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForIaP2 (null)
C:\Windows\tasks\update-S-1-5-21-3334742068-223839025-1322805746-1000.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\Windows\tasks\update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-09 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F91A9A1-01BA-4c81-863D-3BA0751E1419}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-01 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-01 1089288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll [2012-06-07 436192]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-01 1089288]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-01-11 6602856]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-12-21 2480936]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-01 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-01 379552]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-07-21 8192]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-09-19 557768]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2012-02-05 415680]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"Spotify Web Helper"=C:\Users\IaP2\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-10-16 2541160]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-01-15 8619224]
"KSS"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe [2015-12-15 1556448]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-01-25 336384]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-09-13 283160]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-11-09 586296]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-02-01 656920]
"HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2010-12-13 318520]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2014-11-18 226560]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Kaspersky Software Updater Beta.lnk - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe
SpyderUtility.lnk - C:\Program Files (x86)\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2016-02-23 14:59:19 ----D---- C:\rsit
2016-02-23 14:59:19 ----D---- C:\Program Files\trend micro
2016-02-23 14:33:34 ----D---- C:\ProgramData\Kaspersky Lab
2016-02-23 14:33:34 ----D---- C:\Program Files (x86)\Kaspersky Lab
2016-02-23 14:30:58 ----A---- C:\Windows\system32\drivers\fsbts.sys
2016-02-23 14:30:30 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2016-02-23 14:29:29 ----D---- C:\Program Files\F-Secure
2016-02-23 14:09:07 ----D---- C:\ProgramData\F-Secure
2016-02-21 19:18:12 ----D---- C:\Program Files\CCleaner
2016-02-18 18:46:45 ----A---- C:\Windows\system32\WinUSBCoInstaller2.dll
2016-02-18 18:46:45 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2016-02-18 18:44:59 ----D---- C:\Users\IaP2\AppData\Roaming\Kingosoft
2016-02-18 18:44:51 ----D---- C:\Program Files (x86)\Kingo ROOT
2016-02-14 20:07:27 ----A---- C:\Windows\SYSWOW64\shoFF.tmp
2016-02-10 16:51:01 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-02-10 16:51:01 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-02-10 16:51:01 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-02-10 16:51:01 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-02-10 16:51:01 ----A---- C:\Windows\system32\iernonce.dll
2016-02-10 16:51:01 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-10 16:51:01 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-10 16:51:00 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-10 16:51:00 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-02-10 16:51:00 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-10 16:51:00 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-10 16:51:00 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-10 16:51:00 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-02-10 16:51:00 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-10 16:51:00 ----A---- C:\Windows\system32\inseng.dll
2016-02-10 16:51:00 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-10 16:50:59 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-02-10 16:50:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-10 16:50:59 ----A---- C:\Windows\system32\occache.dll
2016-02-10 16:50:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-02-10 16:50:58 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-02-10 16:50:58 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-10 16:50:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-02-10 16:50:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-10 16:50:58 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-10 16:50:58 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-10 16:50:58 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-10 16:50:58 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-10 16:50:57 ----A---- C:\Windows\system32\iesetup.dll
2016-02-10 16:50:57 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-10 16:50:56 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-10 16:50:56 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-02-10 16:50:56 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-10 16:50:56 ----A---- C:\Windows\system32\vbscript.dll
2016-02-10 16:50:55 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-10 16:50:55 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-02-10 16:50:55 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-02-10 16:50:55 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-10 16:50:55 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-10 16:50:54 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-10 16:50:54 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-10 16:50:53 ----A---- C:\Windows\system32\webcheck.dll
2016-02-10 16:50:53 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-10 16:50:53 ----A---- C:\Windows\system32\jscript9.dll
2016-02-10 16:50:53 ----A---- C:\Windows\system32\jscript.dll
2016-02-10 16:50:52 ----A---- C:\Windows\system32\wininet.dll
2016-02-10 16:50:52 ----A---- C:\Windows\system32\msrating.dll
2016-02-10 16:50:52 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-10 16:48:24 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-02-10 16:48:24 ----A---- C:\Windows\system32\InkEd.dll
2016-02-10 16:48:22 ----A---- C:\Windows\system32\generaltel.dll
2016-02-10 16:48:22 ----A---- C:\Windows\system32\appraiser.dll
2016-02-10 16:48:21 ----A---- C:\Windows\system32\invagent.dll
2016-02-10 16:48:21 ----A---- C:\Windows\system32\devinv.dll
2016-02-10 16:48:21 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-02-10 16:48:21 ----A---- C:\Windows\system32\aeinv.dll
2016-02-10 16:48:21 ----A---- C:\Windows\system32\acmigration.dll
2016-02-10 16:48:20 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-10 16:48:20 ----A---- C:\Windows\system32\iertutil.dll
2016-02-10 16:48:19 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-10 16:48:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-10 16:48:18 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-02-10 16:48:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-10 16:48:17 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-02-10 16:48:17 ----A---- C:\Windows\system32\urlmon.dll
2016-02-10 16:48:17 ----A---- C:\Windows\system32\ieui.dll
2016-02-10 16:48:17 ----A---- C:\Windows\system32\ieframe.dll
2016-02-10 16:48:16 ----A---- C:\Windows\system32\mshtml.dll
2016-02-10 16:48:16 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-10 16:46:55 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-10 16:46:53 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-02-10 16:46:53 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-02-10 16:46:53 ----A---- C:\Windows\system32\wucltux.dll
2016-02-10 16:46:53 ----A---- C:\Windows\system32\wuaueng.dll
2016-02-10 16:46:53 ----A---- C:\Windows\system32\wuapi.dll
2016-02-10 16:46:52 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-02-10 16:46:52 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-02-10 16:46:52 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-02-10 16:46:52 ----A---- C:\Windows\system32\wuwebv.dll
2016-02-10 16:46:52 ----A---- C:\Windows\system32\wups2.dll
2016-02-10 16:46:52 ----A---- C:\Windows\system32\wups.dll
2016-02-10 16:46:52 ----A---- C:\Windows\system32\wudriver.dll
2016-02-10 16:46:52 ----A---- C:\Windows\system32\wuauclt.exe
2016-02-10 16:46:52 ----A---- C:\Windows\system32\wuapp.exe
2016-02-10 16:46:52 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-02-10 16:46:52 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-02-10 16:46:41 ----A---- C:\Windows\system32\win32k.sys
2016-02-10 16:46:35 ----A---- C:\Windows\system32\ole32.dll
2016-02-10 16:46:34 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-02-10 16:46:01 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-10 16:46:01 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-10 16:46:01 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-10 16:46:01 ----A---- C:\Windows\system32\ntdll.dll
2016-02-10 16:46:01 ----A---- C:\Windows\system32\EncDec.dll
2016-02-10 16:46:01 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-10 16:46:00 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-02-10 16:46:00 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-10 16:46:00 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-10 16:46:00 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-10 16:46:00 ----A---- C:\Windows\system32\kerberos.dll
2016-02-10 16:45:59 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-02-10 16:45:59 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-10 16:45:59 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-10 16:45:59 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-10 16:45:59 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-02-10 16:45:59 ----A---- C:\Windows\system32\kernel32.dll
2016-02-10 16:45:59 ----A---- C:\Windows\system32\advapi32.dll
2016-02-10 16:45:58 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-10 16:45:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-10 16:45:58 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-10 16:45:57 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-02-10 16:45:57 ----A---- C:\Windows\system32\smss.exe
2016-02-10 16:45:57 ----A---- C:\Windows\system32\schannel.dll
2016-02-10 16:45:57 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-10 16:45:57 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-10 16:45:57 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-10 16:45:57 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-10 16:45:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-10 16:45:56 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-02-10 16:45:56 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-02-10 16:45:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-02-10 16:45:56 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-02-10 16:45:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-02-10 16:45:56 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\wow64win.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\wow64cpu.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\wow64.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\winsrv.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\wdigest.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\sspicli.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\srcore.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\secur32.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\lsass.exe
2016-02-10 16:45:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-10 16:45:56 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-10 16:45:56 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-10 16:45:56 ----A---- C:\Windows\system32\conhost.exe
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-10 16:45:55 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-10 16:45:55 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-02-10 16:45:55 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-02-10 16:45:55 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-02-10 16:45:55 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-02-10 16:45:55 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-02-10 16:45:55 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-02-10 16:45:55 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-02-10 16:45:55 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-02-10 16:45:55 ----A---- C:\Windows\system32\srclient.dll
2016-02-10 16:45:55 ----A---- C:\Windows\system32\rstrui.exe
2016-02-10 16:45:55 ----A---- C:\Windows\system32\ntvdm64.dll
2016-02-10 16:45:55 ----A---- C:\Windows\system32\credssp.dll
2016-02-10 16:45:55 ----A---- C:\Windows\system32\auditpol.exe
2016-02-10 16:45:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-10 16:45:54 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-10 16:45:54 ----A---- C:\Windows\SYSWOW64\user.exe
2016-02-10 16:45:54 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-02-10 16:45:54 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-02-10 16:45:54 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-02-10 16:45:54 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-02-10 16:45:54 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-02-10 16:45:54 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-02-10 16:45:54 ----A---- C:\Windows\system32\msobjs.dll
2016-02-10 16:45:54 ----A---- C:\Windows\system32\msaudite.dll
2016-02-10 16:45:54 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-10 16:45:54 ----A---- C:\Windows\system32\adtschema.dll
2016-02-10 16:45:07 ----A---- C:\Windows\system32\shell32.dll
2016-02-10 16:45:05 ----A---- C:\Windows\explorer.exe
2016-02-10 16:45:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-02-10 16:45:03 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-02-10 16:45:03 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-02-10 16:45:03 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-02-10 16:45:03 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-10 16:45:03 ----A---- C:\Windows\system32\authui.dll
2016-02-08 23:34:04 ----A---- C:\Windows\SYSWOW64\sho28C3.tmp
2016-01-29 19:44:11 ----D---- C:\Users\IaP2\AppData\Roaming\LibreOffice
2016-01-25 15:18:16 ----D---- C:\Program Files\SAMSUNG
2016-01-25 15:17:29 ----D---- C:\ProgramData\Samsung
2016-01-25 10:20:33 ----D---- C:\Program Files (x86)\LibreOffice 5

======List of files/folders modified in the last 1 month======

2016-02-23 14:59:25 ----D---- C:\Windows\Temp
2016-02-23 14:59:25 ----D---- C:\Windows\Prefetch
2016-02-23 14:59:19 ----RD---- C:\Program Files
2016-02-23 14:34:20 ----SHD---- C:\Windows\Installer
2016-02-23 14:33:43 ----SHD---- C:\System Volume Information
2016-02-23 14:33:34 ----RD---- C:\Program Files (x86)
2016-02-23 14:33:34 ----HD---- C:\ProgramData
2016-02-23 14:30:58 ----D---- C:\Windows\system32\drivers
2016-02-23 14:30:58 ----D---- C:\Windows\system32\catroot
2016-02-23 14:29:12 ----D---- C:\Windows\system32\Tasks
2016-02-23 14:06:54 ----D---- C:\Windows\inf
2016-02-23 14:05:03 ----D---- C:\Windows\system32\DriverStore
2016-02-23 12:37:55 ----AD---- C:\Windows
2016-02-23 11:05:13 ----D---- C:\Windows\Microsoft.NET
2016-02-23 10:31:02 ----D---- C:\Windows\system32\config
2016-02-23 10:31:02 ----D---- C:\ProgramData\PDFC
2016-02-23 10:30:19 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-22 15:59:36 ----D---- C:\Windows\system32\drivers\etc
2016-02-22 15:37:13 ----D---- C:\Windows\system32\NDF
2016-02-21 20:58:17 ----D---- C:\Windows\SysWOW64
2016-02-21 20:58:17 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-02-21 20:58:03 ----D---- C:\Windows\System32
2016-02-21 20:58:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-21 19:18:50 ----D---- C:\Users\IaP2\AppData\Roaming\FileZilla
2016-02-21 19:18:40 ----D---- C:\Windows\Panther
2016-02-21 19:18:40 ----D---- C:\Windows\Logs
2016-02-21 19:18:40 ----D---- C:\Windows\debug
2016-02-19 15:55:55 ----D---- C:\Windows\rescache
2016-02-18 11:02:08 ----RSD---- C:\Windows\assembly
2016-02-16 09:37:55 ----D---- C:\Windows\winsxs
2016-02-14 20:05:21 ----SD---- C:\Windows\system32\CompatTel
2016-02-14 20:05:21 ----D---- C:\Windows\SYSWOW64\en-US
2016-02-14 20:05:21 ----D---- C:\Windows\system32\en-US
2016-02-14 20:05:21 ----D---- C:\Windows\system32\appraiser
2016-02-14 20:05:21 ----D---- C:\Windows\AppPatch
2016-02-14 20:05:21 ----D---- C:\Program Files\Internet Explorer
2016-02-14 20:05:21 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-14 20:05:05 ----D---- C:\Windows\en-US
2016-02-14 17:54:35 ----D---- C:\Windows\system32\catroot2
2016-02-07 22:37:01 ----D---- C:\Users\IaP2\AppData\Roaming\SoftGrid Client
2016-02-07 11:00:26 ----RSD---- C:\Windows\Fonts
2016-02-03 11:55:16 ----D---- C:\Users\IaP2\AppData\Roaming\ON1
2016-02-03 11:26:26 ----D---- C:\Windows\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fsbts;fsbts; C:\Windows\system32\drivers\fsbts.sys [2016-02-23 75448]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-09-13 437272]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS [2011-03-15 912504]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20101123.003\BHDrvx64.sys [2010-11-23 953904]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2011-01-06 475696]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\rsdrvx64.sys [2009-02-12 26024]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20110323.001\IDSvia64.sys [2011-03-23 476792]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [2011-04-21 386168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-01-26 8281600]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-01-26 292864]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-02-22 2736640]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-01 28832]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-02-09 31088]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-01-06 132656]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-01-12 2709224]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2015-07-08 68912]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2011-02-15 335464]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-03-05 436840]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2009-12-02 721768]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2009-12-02 269672]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2009-12-02 25960]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2009-12-02 22376]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2015-07-14 174200]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-21 1402416]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-01 36000]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-01 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-01 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-01 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-01 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-01 280224]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110106.003\ENG64.SYS [2011-01-06 117880]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110106.003\EX64.SYS [2011-01-06 1791096]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 Spyder3;Datacolor Spyder3; C:\Windows\system32\DRIVERS\Spyder3.sys [2007-11-06 15360]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [2011-03-31 744568]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-01-26 203776]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-01 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-01 76448]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-02-28 821664]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FSORSPClient;F-Secure ORSP Client; C:\Program Files\F-Secure\Ultralight\ulcore\1455720833\fsorsp64.exe [2016-02-23 77784]
R2 fsulhoster;F-Secure Ultralight; C:\Program Files\F-Secure\Ultralight\ulcore\1455720833\fshoster64.exe [2016-02-23 320472]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-12-01 126520]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-02-04 92216]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-11-09 26680]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-13 13336]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2010-12-28 1817088]
R2 kss;Kaspersky Security Scan Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe [2015-12-15 1556448]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-07-23 268824]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [2011-04-17 130008]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\nlssrv32.exe [2012-02-27 66560]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
R2 PSI_SVC_2_x64;Protexis Licensing V2 x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-11-30 336824]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2009-12-02 483688]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-07-23 2320920]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-02-04 797240]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2009-12-02 209768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-14 107848]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-01 183560]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-12-21 1432400]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-14 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-07-15 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------