Dobrý den,
Posledí týden co jsem použil CCleaner mám problém se svým notebookem. Je zpomalený, některé programy se ani nespustí, krom toho občas špatně reaguje klávesnice a myš.Prosím o kontrolu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by KROBOT at 2016-10-15 15:07:15
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 394 GB (57%) free of 692 GB
Total RAM: 4029 MB (31% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:07:19, on 15.10.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18500)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files\trend micro\KROBOT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [File Sanitizer] c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IFXSPMGT] "c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\windows\system32\nvwmi64.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Roxio Burn Launcher (RoxioBurnLauncher) - Unknown owner - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 15791 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\windows\system32\nvvsvc.exe"
"C:\windows\system32\nvwmi64.exe"
C:\windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
winlogon.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 22671184
\??\C:\windows\system32\conhost.exe "-5065475721648856646-1348910992-212763206832578675543571030-1578689155131147772
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session -first
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe"
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\windows\System32\rundll32.exe" "C:\Program Files\TextEnhance\TextEnhance.dll",_
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe" "-cachedir=C:\Users\KROBOT\AppData\Local\Steam\htmlcache" "-steampid=5192" "-buildid=1476379980" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe"
taskmgr.exe /3
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4ca4b909-53ac-4061-92f1-8d9ef7a1435a -SystemEventPortName:HostProcess-d2484b79-4d63-4aaa-93f0-017c7426b7e2 -IoCancelEventPortName:HostProcess-5666ee01-e329-46a0-bfe5-3313a890f3cf -NonStateChangingEventPortName:HostProcess-ccab517b-4b01-4d3e-ab45-f476f749a82c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8f8dfc8f-e77d-4d5b-99af-7ceea3eae91f -DeviceGroupId:
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
-Minimized
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=5440
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=gpu-process --channel="5440.0.807052596\683793585" --mojo-application-channel-token=92A4657C593F9F4EBC6E1CC8581702AF --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x11be --gpu-driver-vendor=NVIDIA --gpu-driver-version=10.18.13.6180 --gpu-driver-date=1-28-2016 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --mojo-platform-channel-handle=1180 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=6126C8DEBD4BC2AF1E35815C7D8824A4 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=66C9D0C15A73F3A4A3243565A1F62F19 --mojo-application-channel-token=6126C8DEBD4BC2AF1E35815C7D8824A4 --channel="5440.2.166102652\1113091606" --mojo-platform-channel-handle=1740 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=32D7FB90ABE9398D9AE8C42B33533A78 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=55E1EF46FBDE2E2FCCD992BA83A054C5 --mojo-application-channel-token=32D7FB90ABE9398D9AE8C42B33533A78 --channel="5440.3.788428730\1127826921" --mojo-platform-channel-handle=1764 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=839AECB352A094A3B348A2E6E82E0CCD --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=8016AEEB81EF6909952CCC7085F5200B --mojo-application-channel-token=839AECB352A094A3B348A2E6E82E0CCD --channel="5440.4.1916705432\1241256435" --mojo-platform-channel-handle=1996 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=09B2C18C77B690095089E225AF380662 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=0DEC6B9ED4007ECCA86EAB96268F0E1A --mojo-application-channel-token=09B2C18C77B690095089E225AF380662 --channel="5440.22.63412685\739344578" --mojo-platform-channel-handle=6548 /prefetch:1
C:\windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=032FB0E76D39FE4EAEE5FEE23EA4C2D7 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=2B69318C41614A9B66BE100AB8A0A6CB --mojo-application-channel-token=032FB0E76D39FE4EAEE5FEE23EA4C2D7 --channel="5440.29.2105823293\1719813931" --mojo-platform-channel-handle=4104 /prefetch:1
taskeng.exe {9207BCC8-5133-4C92-A587-AA42630E67BE}
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=763B31491F4CF82F5E1B3C3849AE6688 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=013659C9EAA83AE081F7FCBEDE7649FC --mojo-application-channel-token=763B31491F4CF82F5E1B3C3849AE6688 --channel="5440.32.1700874227\1183097860" --mojo-platform-channel-handle=6668 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=259DD2A906CAE8B43071F86DF4C92792 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=8800 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=8F7C3ECC9C86CC87460685680950CC40 --mojo-application-channel-token=259DD2A906CAE8B43071F86DF4C92792 --channel="5440.33.681258716\981835970" --mojo-platform-channel-handle=6620 /prefetch:1
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe15_ Global\UsGthrCtrlFltPipeMssGthrPipe15 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 540 544 552 65536 548
"C:\Users\KROBOT\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe -check pepperplugin
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-08-07 122488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25 414776]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2012-03-14 15232]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-02-20 456704]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-31 1664000]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2016-08-30 1354712]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-03-28 2816240]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2016-04-15 2171960]
"rundll32"=C:\Program Files\TextEnhance\TextEnhance.dll [2015-05-11 2705920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-10-13 2860832]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-05 8894680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-07-05 67384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2016-07-26 176952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2016-09-13 5565960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-05-31 56128]
"JMB36X IDE Setup"=C:\windows\RaidTool\xInsIDE.exe [2014-01-24 43608]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2015-01-16 292088]
"File Sanitizer"=c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2012-08-07 12313720]
"IFXSPMGT"=c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2015-10-08 191200]
""= []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-10-15 15:07:15 ----D---- C:\rsit
2016-10-15 14:57:51 ----D---- C:\FRST
2016-10-12 14:52:02 ----D---- C:\Program Files (x86)\Electronic Arts
2016-10-12 13:12:30 ----A---- C:\windows\system32\invagent.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\generaltel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\devinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-10-12 13:12:30 ----A---- C:\windows\system32\centel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\appraiser.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aepic.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aeinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\acmigration.dll
2016-10-12 13:12:26 ----A---- C:\windows\system32\mshtml.dll
2016-10-12 13:12:25 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-10-12 13:12:24 ----A---- C:\windows\system32\ieframe.dll
2016-10-12 13:12:23 ----A---- C:\windows\SYSWOW64\wmp.dll
2016-10-12 13:12:23 ----A---- C:\windows\system32\wmp.dll
2016-10-12 13:12:22 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-10-12 13:12:21 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\mf.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\jscript9.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\mf.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\blackbox.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\WsmSvc.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\iertutil.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\drmv2clt.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\blackbox.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\drmv2clt.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\quartz.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\ntoskrnl.exe
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\scavengeui.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\MSVidCtl.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\lsasrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\audiosrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WsmWmiPl.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManMigrationPlugin.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManHTTPConfig.exe
2016-10-12 13:12:17 ----A---- C:\windows\system32\vbscript.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\DWrite.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drivers\PEAuth.sys
2016-10-12 13:12:17 ----A---- C:\windows\system32\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WsmWmiPl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManMigrationPlugin.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManHTTPConfig.exe
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\MSVidCtl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\AudioEng.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\win32k.sys
2016-10-12 13:12:16 ----A---- C:\windows\system32\msfeeds.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\mfplat.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\FntCache.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioSes.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioEng.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\DWrite.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\pcasvc.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\mfps.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\EncDump.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\drivers\mountmgr.sys
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-10-12 13:12:14 ----A---- C:\windows\system32\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\system32\inetcomm.dll
2016-10-12 13:12:14 ----A---- C:\windows\system32\drivers\dfsc.sys
2016-10-12 13:12:14 ----A---- C:\windows\system32\audiodg.exe
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-10-12 13:12:13 ----A---- C:\windows\system32\msscp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\msscp.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\WebClnt.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\msnetobj.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\mrxdav.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\msnetobj.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcawrk.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcalua.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcadm.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\ie4uinit.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\davclnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\certcli.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\davclnt.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\msmmsp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\jscript.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\rpcrt4.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\pcaevts.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieui.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieapfltr.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\dxtrans.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\webcheck.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\occache.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\msrating.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\mshtmled.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\kerberos.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jsproxy.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jscript9diag.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\dxtmsft.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\occache.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\smss.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\schannel.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\inseng.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieUnatt.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\crypt32.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\advapi32.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wintrust.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wdigest.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\TSpkg.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\rpchttp.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\ncrypt.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\msv1_0.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\kernel32.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iesetup.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iernonce.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-10-12 13:12:06 ----A---- C:\windows\system32\cryptsvc.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\crypt32.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\wow64win.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\winsrv.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\srcore.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\lsass.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\KernelBase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\ieetwcollector.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptnet.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptbase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\conhost.exe
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\wintrust.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64cpu.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\sspisrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\srclient.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\drivers\appid.sys
2016-10-12 13:12:04 ----A---- C:\windows\system32\csrsrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\auditpol.exe
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\appidapi.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\setbcdlocale.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\rstrui.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidsvc.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidpolicyconverter.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidcertstorecheck.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidapi.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\user.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-10-12 13:11:59 ----A---- C:\windows\system32\apisetschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\adtschema.dll
2016-10-12 13:11:57 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbuhci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbport.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbohci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbhub.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbehci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbccgp.sys
2016-10-12 13:11:43 ----A---- C:\windows\system32\drivers\usbd.sys
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\explorer.exe
2016-10-12 13:11:42 ----A---- C:\windows\system32\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\ExplorerFrame.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\authui.dll
2016-10-12 13:11:42 ----A---- C:\windows\explorer.exe
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\authui.dll
2016-10-12 13:11:38 ----A---- C:\windows\SYSWOW64\poqexec.exe
2016-10-12 13:11:38 ----A---- C:\windows\system32\poqexec.exe
2016-10-07 12:32:08 ----D---- C:\Program Files (x86)\The Turing Test
2016-10-04 23:51:50 ----D---- C:\Program Files (x86)\Microsoft Studios
2016-09-25 21:23:11 ----D---- C:\škola
2016-09-25 00:54:48 ----D---- C:\Program Files (x86)\Everybodys Gone to the Rapture
2016-09-24 14:20:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Yousician Launcher
2016-09-21 19:42:59 ----D---- C:\Users\KROBOT\AppData\Roaming\Eidos Montreal
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srvnet.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv2.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv.sys
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wucltux.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuaueng.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuauclt.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\WinSetupUI.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups2.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\wups.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\olepro32.dll
2016-09-21 13:29:41 ----A---- C:\windows\system32\msiexec.exe
2016-09-21 13:29:41 ----A---- C:\windows\system32\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msiexec.exe
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\asycfilt.dll
2016-09-21 13:29:40 ----A---- C:\windows\system32\consent.exe
2016-09-21 13:29:40 ----A---- C:\windows\system32\asycfilt.dll
2016-09-21 13:29:37 ----A---- C:\windows\SYSWOW64\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\appinfo.dll
2016-09-21 13:29:36 ----A---- C:\windows\system32\msimsg.dll
2016-09-21 13:29:35 ----A---- C:\windows\SYSWOW64\msimsg.dll
2016-09-21 13:29:05 ----A---- C:\windows\SYSWOW64\tzres.dll
2016-09-21 13:29:05 ----A---- C:\windows\system32\tzres.dll
2016-09-21 13:28:54 ----A---- C:\windows\SYSWOW64\user32.dll
2016-09-21 13:28:54 ----A---- C:\windows\system32\user32.dll
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpip.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\netio.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2016-09-21 13:27:56 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2016-09-21 13:27:56 ----A---- C:\windows\system32\oleaut32.dll
2016-09-21 12:51:55 ----D---- C:\Hudba
2016-09-21 12:01:05 ----D---- C:\Program Files (x86)\Steam
======List of files/folders modified in the last 1 month======
2016-10-15 15:07:18 ----D---- C:\Program Files\trend micro
2016-10-15 15:07:10 ----D---- C:\windows\temp
2016-10-15 15:00:57 ----D---- C:\windows
2016-10-15 14:52:35 ----A---- C:\windows\SYSWOW64\log.txt
2016-10-15 14:46:31 ----D---- C:\ProgramData\PDFC
2016-10-15 14:42:27 ----D---- C:\windows\system32\config
2016-10-15 01:28:27 ----RD---- C:\Program Files (x86)
2016-10-15 01:28:27 ----D---- C:\windows\system32\drivers
2016-10-15 01:28:27 ----D---- C:\windows\System32
2016-10-15 00:58:28 ----D---- C:\windows\SysWOW64
2016-10-15 00:58:28 ----A---- C:\windows\SYSWOW64\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\OpenAL32.dll
2016-10-15 00:58:27 ----A---- C:\windows\SYSWOW64\OpenAL32.dll
2016-10-15 00:58:19 ----RSD---- C:\windows\assembly
2016-10-15 00:57:44 ----SHD---- C:\System Volume Information
2016-10-13 17:51:38 ----D---- C:\windows\Logs
2016-10-13 16:05:45 ----SHD---- C:\windows\Installer
2016-10-13 12:47:32 ----D---- C:\windows\Microsoft.NET
2016-10-13 10:58:43 ----D---- C:\windows\winsxs
2016-10-13 10:43:37 ----D---- C:\windows\inf
2016-10-13 10:43:37 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\en-US
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\Dism
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-10-13 10:24:05 ----D---- C:\Program Files\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files\Internet Explorer
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-13 10:24:04 ----D---- C:\windows\system32\en-US
2016-10-13 10:24:04 ----D---- C:\windows\system32\Dism
2016-10-13 10:24:04 ----D---- C:\windows\system32\cs-CZ
2016-10-13 10:24:03 ----SD---- C:\windows\system32\CompatTel
2016-10-13 10:24:03 ----D---- C:\windows\system32\Boot
2016-10-13 10:24:03 ----D---- C:\windows\system32\appraiser
2016-10-13 10:24:03 ----D---- C:\windows\AppPatch
2016-10-13 10:24:02 ----D---- C:\windows\system32\drivers\cs-CZ
2016-10-13 10:24:02 ----D---- C:\windows\cs-CZ
2016-10-13 10:23:59 ----D---- C:\windows\system32\DriverStore
2016-10-13 10:21:58 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 00:11:19 ----D---- C:\ProgramData\Microsoft Help
2016-10-13 00:10:39 ----D---- C:\windows\system32\MRT
2016-10-13 00:01:30 ----D---- C:\windows\debug
2016-10-13 00:01:23 ----AC---- C:\windows\system32\MRT.exe
2016-10-12 23:55:31 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-12 23:16:50 ----D---- C:\Downloads
2016-10-12 13:05:55 ----D---- C:\windows\system32\catroot2
2016-10-09 15:03:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Opera Software
2016-10-09 15:03:45 ----D---- C:\windows\system32\Tasks
2016-10-09 15:03:45 ----D---- C:\Program Files (x86)\Opera
2016-10-07 21:12:38 ----D---- C:\windows\system32\NDF
2016-10-04 19:55:08 ----D---- C:\fitko
2016-10-01 15:54:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-10-01 15:54:34 ----D---- C:\Program Files (x86)\Rockstar Games
2016-10-01 12:05:03 ----D---- C:\windows\Prefetch
2016-09-28 13:35:31 ----D---- C:\windows\system32\catroot
2016-09-28 13:34:42 ----D---- C:\Program Files\Microsoft Security Client
2016-09-28 13:34:02 ----D---- C:\Program Files (x86)\Microsoft Security Client
2016-09-24 19:45:59 ----D---- C:\Games
2016-09-24 11:18:16 ----D---- C:\ProgramData\Origin
2016-09-24 11:17:45 ----D---- C:\windows\SYSWOW64\directx
2016-09-24 11:16:35 ----HD---- C:\windows\msdownld.tmp
2016-09-21 22:24:02 ----RD---- C:\Program Files
2016-09-21 22:24:02 ----D---- C:\windows\ShellNew
2016-09-20 20:06:00 ----D---- C:\ProgramData\GFACE
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2012-09-07 31040]
R0 iaStor;Intel RAID Controller; C:\windows\system32\drivers\iaStor.sys [2013-05-31 568640]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hcs.sys [2015-01-16 20464]
R0 JRAID;JRAID; C:\windows\system32\DRIVERS\jraid.sys [2013-05-31 123704]
R0 MfeEpeOpal;MfeEpeOpal; C:\windows\system32\drivers\MfeEpeOpal.sys [2013-03-27 91432]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2013-03-27 158760]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2012-03-08 58000]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2010-01-26 44576]
R1 SCDEmu;SCDEmu; C:\windows\system32\drivers\SCDEmu.sys [2012-08-17 126944]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2013-06-20 314016]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2013-06-20 43680]
R2 SSPORT;SSPORT; \??\C:\windows\system32\Drivers\SSPORT.sys [2012-02-15 11576]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2012-09-07 43328]
R3 AMPPAL;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\AMPPAL.sys [2013-07-29 164832]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2012-02-03 42816]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\windows\system32\drivers\bcbtums.sys [2015-01-16 172760]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2012-07-01 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2015-01-16 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2015-01-16 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2015-01-16 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2015-01-16 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2015-01-16 21544]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c62x64.sys [2014-05-02 495376]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2015-08-03 33856]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2015-01-16 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3xhc.sys [2015-01-16 795632]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2014-01-24 176880]
R3 johci;JMicron 1394 Filter Driver; C:\windows\system32\DRIVERS\johci.sys [2013-05-31 26208]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2013-10-25 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\windows\system32\DRIVERS\Netwsw00.sys [2014-07-01 11524096]
R3 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2015-12-16 205456]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2016-03-28 34544]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2013-05-31 1064184]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-31 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2016-03-28 555760]
R3 TPM;Čip TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AMPPALP;Protokol Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\amppal.sys [2013-07-29 164832]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2012-02-02 89640]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2012-01-31 64312]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver; C:\windows\system32\DRIVERS\evolve.sys [2016-03-19 21656]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys []
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2015-05-19 46768]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrvAMDASF;SmbDrvAMDASF; C:\windows\system32\drivers\Smb_driver_AMDASF.sys [2012-05-19 25912]
S3 SmbDrvIntel;SmbDrvIntel; C:\windows\system32\drivers\Smb_driver_Intel.sys [2016-03-28 34544]
S3 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 tap0901;TAP-Windows Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2014-02-05 772064]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-03-06 1008344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-07-20 494456]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-12-04 638880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2016-09-13 2621448]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2012-03-14 152992]
R2 HPFSService;File Sanitizer for HP ProtectTools; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2012-08-07 378488]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2012-09-07 33600]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-05-31 13632]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
R2 IFXTCS;Trusted Platform Core Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [2012-04-23 984440]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-10-25 131032]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-10-25 165336]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-08-31 419248]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-10-25 279000]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2013-03-27 1327104]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-08-30 120888]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2016-01-28 1263040]
R2 NVWMI;NVIDIA WMI Provider; C:\windows\system32\nvwmi64.exe [2016-04-15 3167288]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2016-08-10 1719040]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [2012-04-23 212344]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-12-04 157088]
R2 RoxioBurnLauncher;Roxio Burn Launcher; C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2012-03-21 536848]
R2 SearchIndexer;Search Indexer; C:\windows\system32\svchost.exe [2009-07-14 27136]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-31 327680]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2012-04-06 498352]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-10-25 366040]
R3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2015-10-08 1527520]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-08-30 361816]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-08-28 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 EasyAntiCheat;EasyAntiCheat; C:\windows\syswow64\EasyAntiCheat.exe [2016-06-29 249104]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2012-04-27 477056]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-09-30 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-07-26 651576]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-12-04 268192]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2012-03-07 1118480]
S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2011-12-08 76416]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2012-03-09 117552]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problém s PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s PC
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s PC
Problém přetrvává.
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s PC
To docela předpokládám. Rád bych ale viděl log.jarva píše:Problém přetrvává.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s PC
# AdwCleaner v6.021 - Log soubor vytvořen 15/10/2016 na 15:29:15
# Aktualizováno dne 06/10/2016 z ToolsLib
# Databáze : 2016-10-14.1 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : KROBOT - KROBOT-HP
# Beží od : C:\Users\KROBOT\Desktop\adwcleaner_6.021.exe
# Mod: Skenování
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
Nebyly nalezeny žádné škodlivé služby.
***** [ Adresáře ] *****
Složka nalezena: C:\Users\KROBOT\AppData\Roaming\Solvusoft
Složka nalezena: C:\Program Files (x86)\Common Files\DVDVideoSoft\AskTB
***** [ Soubory ] *****
Soubor nalezen: C:\windows\SysNative\roboot64.exe
***** [ DLL ] *****
Nebyly nalezeny žádné škodlivé DLL soubory.
***** [ WMI ] *****
Nebyly nalezeny žádné škodlivé klíče.
***** [ Zástupce ] *****
Žádné infikovaný zástupce nenalezen.
***** [ Plánovač úloh ] *****
Žádný nebezpečná úloha nenalezena.
***** [ Registry ] *****
Hodnota nalezena: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
Klíč nalezen: HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
Klíč nalezen: HKU\S-1-5-21-3260140517-497560047-1006625806-1001\Software\Reg\Clean
Klíč nalezen: HKU\S-1-5-21-3260140517-497560047-1006625806-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: HKU\S-1-5-21-3260140517-497560047-1006625806-1001\Software\Mail.Ru
Klíč nalezen: HKU\S-1-5-21-3260140517-497560047-1006625806-1001\Software\AppDataLow\Software\Mail.Ru
Klíč nalezen: HKU\S-1-5-18\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
Klíč nalezen: HKCU\Software\Reg\Clean
Klíč nalezen: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: HKCU\Software\Mail.Ru
Klíč nalezen: HKCU\Software\AppDataLow\Software\Mail.Ru
Klíč nalezen: HKLM\SOFTWARE\Reg\Clean
Klíč nalezen: [x64] HKCU\Software\Reg\Clean
Klíč nalezen: [x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: [x64] HKCU\Software\Mail.Ru
Klíč nalezen: [x64] HKCU\Software\AppDataLow\Software\Mail.Ru
Klíč nalezen: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\solvusoft.com
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.solvusoft.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\solvusoft.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.solvusoft.com
Klíč nalezen: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
***** [ Internetové prohlížeče ] *****
Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium báze.
*************************
C:\AdwCleaner\AdwCleaner[S0].txt - [3652 Bajtů] - [15/10/2016 15:29:15]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3726 Bajtů] ##########
# Aktualizováno dne 06/10/2016 z ToolsLib
# Databáze : 2016-10-14.1 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : KROBOT - KROBOT-HP
# Beží od : C:\Users\KROBOT\Desktop\adwcleaner_6.021.exe
# Mod: Skenování
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
Nebyly nalezeny žádné škodlivé služby.
***** [ Adresáře ] *****
Složka nalezena: C:\Users\KROBOT\AppData\Roaming\Solvusoft
Složka nalezena: C:\Program Files (x86)\Common Files\DVDVideoSoft\AskTB
***** [ Soubory ] *****
Soubor nalezen: C:\windows\SysNative\roboot64.exe
***** [ DLL ] *****
Nebyly nalezeny žádné škodlivé DLL soubory.
***** [ WMI ] *****
Nebyly nalezeny žádné škodlivé klíče.
***** [ Zástupce ] *****
Žádné infikovaný zástupce nenalezen.
***** [ Plánovač úloh ] *****
Žádný nebezpečná úloha nenalezena.
***** [ Registry ] *****
Hodnota nalezena: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
Klíč nalezen: HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
Klíč nalezen: HKU\S-1-5-21-3260140517-497560047-1006625806-1001\Software\Reg\Clean
Klíč nalezen: HKU\S-1-5-21-3260140517-497560047-1006625806-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: HKU\S-1-5-21-3260140517-497560047-1006625806-1001\Software\Mail.Ru
Klíč nalezen: HKU\S-1-5-21-3260140517-497560047-1006625806-1001\Software\AppDataLow\Software\Mail.Ru
Klíč nalezen: HKU\S-1-5-18\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
Klíč nalezen: HKCU\Software\Reg\Clean
Klíč nalezen: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: HKCU\Software\Mail.Ru
Klíč nalezen: HKCU\Software\AppDataLow\Software\Mail.Ru
Klíč nalezen: HKLM\SOFTWARE\Reg\Clean
Klíč nalezen: [x64] HKCU\Software\Reg\Clean
Klíč nalezen: [x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Klíč nalezen: [x64] HKCU\Software\Mail.Ru
Klíč nalezen: [x64] HKCU\Software\AppDataLow\Software\Mail.Ru
Klíč nalezen: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\solvusoft.com
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.solvusoft.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\solvusoft.com
Klíč nalezen: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.solvusoft.com
Klíč nalezen: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
***** [ Internetové prohlížeče ] *****
Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium báze.
*************************
C:\AdwCleaner\AdwCleaner[S0].txt - [3652 Bajtů] - [15/10/2016 15:29:15]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3726 Bajtů] ##########
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s PC
Neklikl jste na mazání, ADW nemazal. Zkuste znovu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s PC
# AdwCleaner v6.021 - Log soubor vytvořen 15/10/2016 na 18:53:47
# Aktualizováno dne 06/10/2016 z ToolsLib
# Databáze : 2016-10-15.2 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : KROBOT - KROBOT-HP
# Beží od : C:\Users\KROBOT\Desktop\adwcleaner_6.021.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Adresáře ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [3945 Bajtů] - [15/10/2016 15:29:36]
C:\AdwCleaner\AdwCleaner[C2].txt - [878 Bajtů] - [15/10/2016 18:53:47]
C:\AdwCleaner\AdwCleaner[S0].txt - [3842 Bajtů] - [15/10/2016 15:29:15]
C:\AdwCleaner\AdwCleaner[S1].txt - [1548 Bajtů] - [15/10/2016 17:46:27]
C:\AdwCleaner\AdwCleaner[S2].txt - [1622 Bajtů] - [15/10/2016 17:48:48]
C:\AdwCleaner\AdwCleaner[S3].txt - [1696 Bajtů] - [15/10/2016 18:53:13]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1247 Bajtů] ##########
# Aktualizováno dne 06/10/2016 z ToolsLib
# Databáze : 2016-10-15.2 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : KROBOT - KROBOT-HP
# Beží od : C:\Users\KROBOT\Desktop\adwcleaner_6.021.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Adresáře ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [3945 Bajtů] - [15/10/2016 15:29:36]
C:\AdwCleaner\AdwCleaner[C2].txt - [878 Bajtů] - [15/10/2016 18:53:47]
C:\AdwCleaner\AdwCleaner[S0].txt - [3842 Bajtů] - [15/10/2016 15:29:15]
C:\AdwCleaner\AdwCleaner[S1].txt - [1548 Bajtů] - [15/10/2016 17:46:27]
C:\AdwCleaner\AdwCleaner[S2].txt - [1622 Bajtů] - [15/10/2016 17:48:48]
C:\AdwCleaner\AdwCleaner[S3].txt - [1696 Bajtů] - [15/10/2016 18:53:13]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1247 Bajtů] ##########
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s PC
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s PC
Logfile of random's system information tool 1.10 (written by random/random)
Run by KROBOT at 2016-10-15 21:15:48
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 394 GB (57%) free of 692 GB
Total RAM: 4029 MB (40% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:15:56, on 15.10.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18500)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files\trend micro\KROBOT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [File Sanitizer] c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IFXSPMGT] "c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\windows\system32\nvwmi64.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Roxio Burn Launcher (RoxioBurnLauncher) - Unknown owner - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 15671 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\windows\system32\nvvsvc.exe"
"C:\windows\system32\nvwmi64.exe"
C:\windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
winlogon.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session -first
C:\windows\system32\WLANExt.exe 11277280
\??\C:\windows\system32\conhost.exe "98795568767583621113843632741143809638-12767309261635472742-1317877066202659097
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe"
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\windows\System32\rundll32.exe" "C:\Program Files\TextEnhance\TextEnhance.dll",_
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Users\KROBOT\AppData\Local\Temp\gAD8F.tmp.exe
taskmgr.exe /3
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=5544
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=gpu-process --channel="5544.0.1249238849\1199468490" --mojo-application-channel-token=48EE85530BEA65F6006B9B4A92DF8F81 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x11be --gpu-driver-vendor=NVIDIA --gpu-driver-version=10.18.13.6180 --gpu-driver-date=1-28-2016 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --mojo-platform-channel-handle=1200 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=0CEE65062E25F5565E40E0E46772CCEF --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=CFDA10110A5537A0AC9084A75599EE67 --mojo-application-channel-token=0CEE65062E25F5565E40E0E46772CCEF --channel="5544.2.1322447485\809252742" --mojo-platform-channel-handle=1832 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=973CEA9564C55F4DE29D1E5DE196E069 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=C629F0F26E9F7EFF1A23E5395D7E8ED2 --mojo-application-channel-token=973CEA9564C55F4DE29D1E5DE196E069 --channel="5544.4.1894770789\1742811514" --mojo-platform-channel-handle=2052 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=B370FB502ABF073E8680F4550D3E81CB --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=4BBE130194B5FF1C3D8B1F1AD1ABB890 --mojo-application-channel-token=B370FB502ABF073E8680F4550D3E81CB --channel="5544.5.950399018\1671753110" --mojo-platform-channel-handle=2040 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=98C941AAB4735E2F9169AF227D3935C0 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=373AAC6209CE0B22C40344C515675866 --mojo-application-channel-token=98C941AAB4735E2F9169AF227D3935C0 --channel="5544.9.1083403284\1923434199" --mojo-platform-channel-handle=2156 /prefetch:1
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c99ffbe3-37d5-424a-bc57-d237b746215c -SystemEventPortName:HostProcess-d61c1ad1-768e-45ef-b9f7-c4fc3249d05c -IoCancelEventPortName:HostProcess-def6794e-c263-4245-9f74-1639edd983f7 -NonStateChangingEventPortName:HostProcess-02af42d2-b17b-4b51-a01f-252a54249034 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4ccff0bb-3bd1-4e3a-aa52-b0a2cc4a2eec -DeviceGroupId:
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
-Minimized
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
taskeng.exe {EEF84E22-3A0E-4604-88A8-9014F877A331}
C:\windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=7C32AD193D1C039FFFB9E783A6FEB087 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=DE220E1C3EF4569490279E3B65AB20DB --mojo-application-channel-token=7C32AD193D1C039FFFB9E783A6FEB087 --channel="5544.23.1256274869\1184597797" --mojo-platform-channel-handle=6796 /prefetch:1
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=D7A294C1EB81434DFBCB4B583CFCA559 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=A0FC7D93B16142A7EE5DE6634F7D5CC5 --mojo-application-channel-token=D7A294C1EB81434DFBCB4B583CFCA559 --channel="5544.24.1969019994\185468579" --mojo-platform-channel-handle=2832 /prefetch:1
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 548 552 560 65536 556
"C:\Users\KROBOT\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe -check pepperplugin
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-08-07 122488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25 414776]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2012-03-14 15232]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-02-20 456704]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-31 1664000]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2016-08-30 1354712]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-03-28 2816240]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2016-04-15 2171960]
"rundll32"=C:\Program Files\TextEnhance\TextEnhance.dll [2015-05-11 2705920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-10-13 2860832]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-05 8894680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-07-05 67384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2016-07-26 176952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2016-09-13 5565960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-05-31 56128]
"JMB36X IDE Setup"=C:\windows\RaidTool\xInsIDE.exe [2014-01-24 43608]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2015-01-16 292088]
"File Sanitizer"=c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2012-08-07 12313720]
"IFXSPMGT"=c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2015-10-08 191200]
""= []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-10-15 15:28:13 ----D---- C:\AdwCleaner
2016-10-15 15:07:15 ----D---- C:\rsit
2016-10-15 14:57:51 ----D---- C:\FRST
2016-10-12 14:52:02 ----D---- C:\Program Files (x86)\Electronic Arts
2016-10-12 13:12:30 ----A---- C:\windows\system32\invagent.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\generaltel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\devinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-10-12 13:12:30 ----A---- C:\windows\system32\centel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\appraiser.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aepic.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aeinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\acmigration.dll
2016-10-12 13:12:26 ----A---- C:\windows\system32\mshtml.dll
2016-10-12 13:12:25 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-10-12 13:12:24 ----A---- C:\windows\system32\ieframe.dll
2016-10-12 13:12:23 ----A---- C:\windows\SYSWOW64\wmp.dll
2016-10-12 13:12:23 ----A---- C:\windows\system32\wmp.dll
2016-10-12 13:12:22 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-10-12 13:12:21 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\mf.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\jscript9.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\mf.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\blackbox.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\WsmSvc.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\iertutil.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\drmv2clt.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\blackbox.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\drmv2clt.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\quartz.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\ntoskrnl.exe
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\scavengeui.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\MSVidCtl.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\lsasrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\audiosrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WsmWmiPl.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManMigrationPlugin.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManHTTPConfig.exe
2016-10-12 13:12:17 ----A---- C:\windows\system32\vbscript.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\DWrite.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drivers\PEAuth.sys
2016-10-12 13:12:17 ----A---- C:\windows\system32\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WsmWmiPl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManMigrationPlugin.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManHTTPConfig.exe
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\MSVidCtl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\AudioEng.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\win32k.sys
2016-10-12 13:12:16 ----A---- C:\windows\system32\msfeeds.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\mfplat.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\FntCache.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioSes.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioEng.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\DWrite.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\pcasvc.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\mfps.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\EncDump.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\drivers\mountmgr.sys
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-10-12 13:12:14 ----A---- C:\windows\system32\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\system32\inetcomm.dll
2016-10-12 13:12:14 ----A---- C:\windows\system32\drivers\dfsc.sys
2016-10-12 13:12:14 ----A---- C:\windows\system32\audiodg.exe
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-10-12 13:12:13 ----A---- C:\windows\system32\msscp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\msscp.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\WebClnt.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\msnetobj.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\mrxdav.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\msnetobj.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcawrk.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcalua.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcadm.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\ie4uinit.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\davclnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\certcli.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\davclnt.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\msmmsp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\jscript.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\rpcrt4.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\pcaevts.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieui.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieapfltr.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\dxtrans.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\webcheck.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\occache.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\msrating.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\mshtmled.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\kerberos.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jsproxy.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jscript9diag.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\dxtmsft.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\occache.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\smss.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\schannel.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\inseng.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieUnatt.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\crypt32.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\advapi32.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wintrust.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wdigest.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\TSpkg.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\rpchttp.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\ncrypt.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\msv1_0.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\kernel32.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iesetup.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iernonce.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-10-12 13:12:06 ----A---- C:\windows\system32\cryptsvc.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\crypt32.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\wow64win.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\winsrv.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\srcore.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\lsass.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\KernelBase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\ieetwcollector.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptnet.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptbase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\conhost.exe
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\wintrust.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64cpu.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\sspisrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\srclient.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\drivers\appid.sys
2016-10-12 13:12:04 ----A---- C:\windows\system32\csrsrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\auditpol.exe
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\appidapi.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\setbcdlocale.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\rstrui.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidsvc.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidpolicyconverter.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidcertstorecheck.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidapi.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\user.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-10-12 13:11:59 ----A---- C:\windows\system32\apisetschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\adtschema.dll
2016-10-12 13:11:57 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbuhci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbport.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbohci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbhub.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbehci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbccgp.sys
2016-10-12 13:11:43 ----A---- C:\windows\system32\drivers\usbd.sys
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\explorer.exe
2016-10-12 13:11:42 ----A---- C:\windows\system32\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\ExplorerFrame.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\authui.dll
2016-10-12 13:11:42 ----A---- C:\windows\explorer.exe
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\authui.dll
2016-10-12 13:11:38 ----A---- C:\windows\SYSWOW64\poqexec.exe
2016-10-12 13:11:38 ----A---- C:\windows\system32\poqexec.exe
2016-10-07 12:32:08 ----D---- C:\Program Files (x86)\The Turing Test
2016-10-04 23:51:50 ----D---- C:\Program Files (x86)\Microsoft Studios
2016-09-25 21:23:11 ----D---- C:\škola
2016-09-25 00:54:48 ----D---- C:\Program Files (x86)\Everybodys Gone to the Rapture
2016-09-24 14:20:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Yousician Launcher
2016-09-21 19:42:59 ----D---- C:\Users\KROBOT\AppData\Roaming\Eidos Montreal
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srvnet.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv2.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv.sys
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wucltux.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuaueng.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuauclt.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\WinSetupUI.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups2.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\wups.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\olepro32.dll
2016-09-21 13:29:41 ----A---- C:\windows\system32\msiexec.exe
2016-09-21 13:29:41 ----A---- C:\windows\system32\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msiexec.exe
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\asycfilt.dll
2016-09-21 13:29:40 ----A---- C:\windows\system32\consent.exe
2016-09-21 13:29:40 ----A---- C:\windows\system32\asycfilt.dll
2016-09-21 13:29:37 ----A---- C:\windows\SYSWOW64\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\appinfo.dll
2016-09-21 13:29:36 ----A---- C:\windows\system32\msimsg.dll
2016-09-21 13:29:35 ----A---- C:\windows\SYSWOW64\msimsg.dll
2016-09-21 13:29:05 ----A---- C:\windows\SYSWOW64\tzres.dll
2016-09-21 13:29:05 ----A---- C:\windows\system32\tzres.dll
2016-09-21 13:28:54 ----A---- C:\windows\SYSWOW64\user32.dll
2016-09-21 13:28:54 ----A---- C:\windows\system32\user32.dll
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpip.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\netio.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2016-09-21 13:27:56 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2016-09-21 13:27:56 ----A---- C:\windows\system32\oleaut32.dll
2016-09-21 12:51:55 ----D---- C:\Hudba
2016-09-21 12:01:05 ----D---- C:\Program Files (x86)\Steam
======List of files/folders modified in the last 1 month======
2016-10-15 21:15:51 ----D---- C:\Program Files\trend micro
2016-10-15 21:15:29 ----D---- C:\windows\temp
2016-10-15 18:58:36 ----A---- C:\windows\SYSWOW64\log.txt
2016-10-15 18:55:29 ----D---- C:\windows\system32\catroot2
2016-10-15 18:55:03 ----D---- C:\ProgramData\PDFC
2016-10-15 17:57:25 ----D---- C:\windows\system32\config
2016-10-15 15:29:33 ----D---- C:\windows\System32
2016-10-15 15:00:57 ----D---- C:\windows
2016-10-15 01:28:27 ----RD---- C:\Program Files (x86)
2016-10-15 01:28:27 ----D---- C:\windows\system32\drivers
2016-10-15 00:58:28 ----D---- C:\windows\SysWOW64
2016-10-15 00:58:28 ----A---- C:\windows\SYSWOW64\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\OpenAL32.dll
2016-10-15 00:58:27 ----A---- C:\windows\SYSWOW64\OpenAL32.dll
2016-10-15 00:58:19 ----RSD---- C:\windows\assembly
2016-10-15 00:57:44 ----SHD---- C:\System Volume Information
2016-10-13 17:51:38 ----D---- C:\windows\Logs
2016-10-13 16:05:45 ----SHD---- C:\windows\Installer
2016-10-13 12:47:32 ----D---- C:\windows\Microsoft.NET
2016-10-13 10:58:43 ----D---- C:\windows\winsxs
2016-10-13 10:43:37 ----D---- C:\windows\inf
2016-10-13 10:43:37 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\en-US
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\Dism
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-10-13 10:24:05 ----D---- C:\Program Files\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files\Internet Explorer
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-13 10:24:04 ----D---- C:\windows\system32\en-US
2016-10-13 10:24:04 ----D---- C:\windows\system32\Dism
2016-10-13 10:24:04 ----D---- C:\windows\system32\cs-CZ
2016-10-13 10:24:03 ----SD---- C:\windows\system32\CompatTel
2016-10-13 10:24:03 ----D---- C:\windows\system32\Boot
2016-10-13 10:24:03 ----D---- C:\windows\system32\appraiser
2016-10-13 10:24:03 ----D---- C:\windows\AppPatch
2016-10-13 10:24:02 ----D---- C:\windows\system32\drivers\cs-CZ
2016-10-13 10:24:02 ----D---- C:\windows\cs-CZ
2016-10-13 10:23:59 ----D---- C:\windows\system32\DriverStore
2016-10-13 10:21:58 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 00:11:19 ----D---- C:\ProgramData\Microsoft Help
2016-10-13 00:10:39 ----D---- C:\windows\system32\MRT
2016-10-13 00:01:30 ----D---- C:\windows\debug
2016-10-13 00:01:23 ----AC---- C:\windows\system32\MRT.exe
2016-10-12 23:55:31 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-12 23:16:50 ----D---- C:\Downloads
2016-10-09 15:03:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Opera Software
2016-10-09 15:03:45 ----D---- C:\windows\system32\Tasks
2016-10-09 15:03:45 ----D---- C:\Program Files (x86)\Opera
2016-10-07 21:12:38 ----D---- C:\windows\system32\NDF
2016-10-04 19:55:08 ----D---- C:\fitko
2016-10-01 15:54:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-10-01 15:54:34 ----D---- C:\Program Files (x86)\Rockstar Games
2016-10-01 12:05:03 ----D---- C:\windows\Prefetch
2016-09-28 13:35:31 ----D---- C:\windows\system32\catroot
2016-09-28 13:34:42 ----D---- C:\Program Files\Microsoft Security Client
2016-09-28 13:34:02 ----D---- C:\Program Files (x86)\Microsoft Security Client
2016-09-24 19:45:59 ----D---- C:\Games
2016-09-24 11:18:16 ----D---- C:\ProgramData\Origin
2016-09-24 11:17:45 ----D---- C:\windows\SYSWOW64\directx
2016-09-24 11:16:35 ----HD---- C:\windows\msdownld.tmp
2016-09-21 22:24:02 ----RD---- C:\Program Files
2016-09-21 22:24:02 ----D---- C:\windows\ShellNew
2016-09-20 20:06:00 ----D---- C:\ProgramData\GFACE
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2012-09-07 31040]
R0 iaStor;Intel RAID Controller; C:\windows\system32\drivers\iaStor.sys [2013-05-31 568640]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hcs.sys [2015-01-16 20464]
R0 JRAID;JRAID; C:\windows\system32\DRIVERS\jraid.sys [2013-05-31 123704]
R0 MfeEpeOpal;MfeEpeOpal; C:\windows\system32\drivers\MfeEpeOpal.sys [2013-03-27 91432]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2013-03-27 158760]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2012-03-08 58000]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2010-01-26 44576]
R1 SCDEmu;SCDEmu; C:\windows\system32\drivers\SCDEmu.sys [2012-08-17 126944]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2013-06-20 314016]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2013-06-20 43680]
R2 SSPORT;SSPORT; \??\C:\windows\system32\Drivers\SSPORT.sys [2012-02-15 11576]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2012-09-07 43328]
R3 AMPPAL;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\AMPPAL.sys [2013-07-29 164832]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2012-02-03 42816]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\windows\system32\drivers\bcbtums.sys [2015-01-16 172760]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2012-07-01 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2015-01-16 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2015-01-16 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2015-01-16 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2015-01-16 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2015-01-16 21544]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c62x64.sys [2014-05-02 495376]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2015-08-03 33856]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2015-01-16 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3xhc.sys [2015-01-16 795632]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2014-01-24 176880]
R3 johci;JMicron 1394 Filter Driver; C:\windows\system32\DRIVERS\johci.sys [2013-05-31 26208]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2013-10-25 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\windows\system32\DRIVERS\Netwsw00.sys [2014-07-01 11524096]
R3 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2015-12-16 205456]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2016-03-28 34544]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2013-05-31 1064184]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-31 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2016-03-28 555760]
R3 TPM;Čip TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AMPPALP;Protokol Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\amppal.sys [2013-07-29 164832]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2012-02-02 89640]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2012-01-31 64312]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver; C:\windows\system32\DRIVERS\evolve.sys [2016-03-19 21656]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys []
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2015-05-19 46768]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrvAMDASF;SmbDrvAMDASF; C:\windows\system32\drivers\Smb_driver_AMDASF.sys [2012-05-19 25912]
S3 SmbDrvIntel;SmbDrvIntel; C:\windows\system32\drivers\Smb_driver_Intel.sys [2016-03-28 34544]
S3 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 tap0901;TAP-Windows Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2014-02-05 772064]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-03-06 1008344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-07-20 494456]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-12-04 638880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2016-09-13 2621448]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2012-03-14 152992]
R2 HPFSService;File Sanitizer for HP ProtectTools; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2012-08-07 378488]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2012-09-07 33600]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-05-31 13632]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
R2 IFXTCS;Trusted Platform Core Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [2012-04-23 984440]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-10-25 131032]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-10-25 165336]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-08-31 419248]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-10-25 279000]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2013-03-27 1327104]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-08-30 120888]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2016-01-28 1263040]
R2 NVWMI;NVIDIA WMI Provider; C:\windows\system32\nvwmi64.exe [2016-04-15 3167288]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2016-08-10 1719040]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [2012-04-23 212344]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-12-04 157088]
R2 RoxioBurnLauncher;Roxio Burn Launcher; C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2012-03-21 536848]
R2 SearchIndexer;Search Indexer; C:\windows\system32\svchost.exe [2009-07-14 27136]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-31 327680]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2012-04-06 498352]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-10-25 366040]
R3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2015-10-08 1527520]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-08-30 361816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-08-28 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 EasyAntiCheat;EasyAntiCheat; C:\windows\syswow64\EasyAntiCheat.exe [2016-06-29 249104]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2012-04-27 477056]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-09-30 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-07-26 651576]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-12-04 268192]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2012-03-07 1118480]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2011-12-08 76416]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2012-03-09 117552]
-----------------EOF-----------------
Run by KROBOT at 2016-10-15 21:15:48
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 394 GB (57%) free of 692 GB
Total RAM: 4029 MB (40% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:15:56, on 15.10.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18500)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files\trend micro\KROBOT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [File Sanitizer] c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IFXSPMGT] "c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\windows\system32\nvwmi64.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Roxio Burn Launcher (RoxioBurnLauncher) - Unknown owner - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 15671 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\windows\system32\nvvsvc.exe"
"C:\windows\system32\nvwmi64.exe"
C:\windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
winlogon.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session -first
C:\windows\system32\WLANExt.exe 11277280
\??\C:\windows\system32\conhost.exe "98795568767583621113843632741143809638-12767309261635472742-1317877066202659097
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe"
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\windows\System32\rundll32.exe" "C:\Program Files\TextEnhance\TextEnhance.dll",_
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Users\KROBOT\AppData\Local\Temp\gAD8F.tmp.exe
taskmgr.exe /3
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=5544
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=gpu-process --channel="5544.0.1249238849\1199468490" --mojo-application-channel-token=48EE85530BEA65F6006B9B4A92DF8F81 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x11be --gpu-driver-vendor=NVIDIA --gpu-driver-version=10.18.13.6180 --gpu-driver-date=1-28-2016 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --mojo-platform-channel-handle=1200 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=0CEE65062E25F5565E40E0E46772CCEF --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=CFDA10110A5537A0AC9084A75599EE67 --mojo-application-channel-token=0CEE65062E25F5565E40E0E46772CCEF --channel="5544.2.1322447485\809252742" --mojo-platform-channel-handle=1832 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=973CEA9564C55F4DE29D1E5DE196E069 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=C629F0F26E9F7EFF1A23E5395D7E8ED2 --mojo-application-channel-token=973CEA9564C55F4DE29D1E5DE196E069 --channel="5544.4.1894770789\1742811514" --mojo-platform-channel-handle=2052 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=B370FB502ABF073E8680F4550D3E81CB --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=4BBE130194B5FF1C3D8B1F1AD1ABB890 --mojo-application-channel-token=B370FB502ABF073E8680F4550D3E81CB --channel="5544.5.950399018\1671753110" --mojo-platform-channel-handle=2040 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=98C941AAB4735E2F9169AF227D3935C0 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=373AAC6209CE0B22C40344C515675866 --mojo-application-channel-token=98C941AAB4735E2F9169AF227D3935C0 --channel="5544.9.1083403284\1923434199" --mojo-platform-channel-handle=2156 /prefetch:1
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c99ffbe3-37d5-424a-bc57-d237b746215c -SystemEventPortName:HostProcess-d61c1ad1-768e-45ef-b9f7-c4fc3249d05c -IoCancelEventPortName:HostProcess-def6794e-c263-4245-9f74-1639edd983f7 -NonStateChangingEventPortName:HostProcess-02af42d2-b17b-4b51-a01f-252a54249034 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4ccff0bb-3bd1-4e3a-aa52-b0a2cc4a2eec -DeviceGroupId:
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
-Minimized
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
taskeng.exe {EEF84E22-3A0E-4604-88A8-9014F877A331}
C:\windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=7C32AD193D1C039FFFB9E783A6FEB087 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=DE220E1C3EF4569490279E3B65AB20DB --mojo-application-channel-token=7C32AD193D1C039FFFB9E783A6FEB087 --channel="5544.23.1256274869\1184597797" --mojo-platform-channel-handle=6796 /prefetch:1
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=D7A294C1EB81434DFBCB4B583CFCA559 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=5528 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=A0FC7D93B16142A7EE5DE6634F7D5CC5 --mojo-application-channel-token=D7A294C1EB81434DFBCB4B583CFCA559 --channel="5544.24.1969019994\185468579" --mojo-platform-channel-handle=2832 /prefetch:1
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 548 552 560 65536 556
"C:\Users\KROBOT\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe -check pepperplugin
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-08-07 122488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25 414776]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2012-03-14 15232]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-02-20 456704]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-31 1664000]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2016-08-30 1354712]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-03-28 2816240]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2016-04-15 2171960]
"rundll32"=C:\Program Files\TextEnhance\TextEnhance.dll [2015-05-11 2705920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-10-13 2860832]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-05 8894680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-07-05 67384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2016-07-26 176952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2016-09-13 5565960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-05-31 56128]
"JMB36X IDE Setup"=C:\windows\RaidTool\xInsIDE.exe [2014-01-24 43608]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2015-01-16 292088]
"File Sanitizer"=c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2012-08-07 12313720]
"IFXSPMGT"=c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2015-10-08 191200]
""= []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-10-15 15:28:13 ----D---- C:\AdwCleaner
2016-10-15 15:07:15 ----D---- C:\rsit
2016-10-15 14:57:51 ----D---- C:\FRST
2016-10-12 14:52:02 ----D---- C:\Program Files (x86)\Electronic Arts
2016-10-12 13:12:30 ----A---- C:\windows\system32\invagent.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\generaltel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\devinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-10-12 13:12:30 ----A---- C:\windows\system32\centel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\appraiser.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aepic.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aeinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\acmigration.dll
2016-10-12 13:12:26 ----A---- C:\windows\system32\mshtml.dll
2016-10-12 13:12:25 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-10-12 13:12:24 ----A---- C:\windows\system32\ieframe.dll
2016-10-12 13:12:23 ----A---- C:\windows\SYSWOW64\wmp.dll
2016-10-12 13:12:23 ----A---- C:\windows\system32\wmp.dll
2016-10-12 13:12:22 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-10-12 13:12:21 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\mf.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\jscript9.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\mf.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\blackbox.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\WsmSvc.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\iertutil.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\drmv2clt.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\blackbox.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\drmv2clt.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\quartz.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\ntoskrnl.exe
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\scavengeui.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\MSVidCtl.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\lsasrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\audiosrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WsmWmiPl.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManMigrationPlugin.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManHTTPConfig.exe
2016-10-12 13:12:17 ----A---- C:\windows\system32\vbscript.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\DWrite.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drivers\PEAuth.sys
2016-10-12 13:12:17 ----A---- C:\windows\system32\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WsmWmiPl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManMigrationPlugin.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManHTTPConfig.exe
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\MSVidCtl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\AudioEng.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\win32k.sys
2016-10-12 13:12:16 ----A---- C:\windows\system32\msfeeds.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\mfplat.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\FntCache.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioSes.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioEng.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\DWrite.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\pcasvc.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\mfps.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\EncDump.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\drivers\mountmgr.sys
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-10-12 13:12:14 ----A---- C:\windows\system32\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\system32\inetcomm.dll
2016-10-12 13:12:14 ----A---- C:\windows\system32\drivers\dfsc.sys
2016-10-12 13:12:14 ----A---- C:\windows\system32\audiodg.exe
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-10-12 13:12:13 ----A---- C:\windows\system32\msscp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\msscp.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\WebClnt.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\msnetobj.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\mrxdav.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\msnetobj.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcawrk.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcalua.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcadm.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\ie4uinit.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\davclnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\certcli.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\davclnt.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\msmmsp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\jscript.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\rpcrt4.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\pcaevts.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieui.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieapfltr.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\dxtrans.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\webcheck.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\occache.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\msrating.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\mshtmled.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\kerberos.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jsproxy.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jscript9diag.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\dxtmsft.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\occache.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\smss.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\schannel.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\inseng.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieUnatt.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\crypt32.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\advapi32.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wintrust.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wdigest.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\TSpkg.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\rpchttp.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\ncrypt.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\msv1_0.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\kernel32.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iesetup.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iernonce.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-10-12 13:12:06 ----A---- C:\windows\system32\cryptsvc.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\crypt32.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\wow64win.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\winsrv.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\srcore.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\lsass.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\KernelBase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\ieetwcollector.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptnet.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptbase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\conhost.exe
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\wintrust.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64cpu.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\sspisrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\srclient.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\drivers\appid.sys
2016-10-12 13:12:04 ----A---- C:\windows\system32\csrsrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\auditpol.exe
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\appidapi.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\setbcdlocale.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\rstrui.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidsvc.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidpolicyconverter.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidcertstorecheck.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidapi.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\user.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-10-12 13:11:59 ----A---- C:\windows\system32\apisetschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\adtschema.dll
2016-10-12 13:11:57 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbuhci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbport.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbohci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbhub.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbehci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbccgp.sys
2016-10-12 13:11:43 ----A---- C:\windows\system32\drivers\usbd.sys
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\explorer.exe
2016-10-12 13:11:42 ----A---- C:\windows\system32\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\ExplorerFrame.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\authui.dll
2016-10-12 13:11:42 ----A---- C:\windows\explorer.exe
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\authui.dll
2016-10-12 13:11:38 ----A---- C:\windows\SYSWOW64\poqexec.exe
2016-10-12 13:11:38 ----A---- C:\windows\system32\poqexec.exe
2016-10-07 12:32:08 ----D---- C:\Program Files (x86)\The Turing Test
2016-10-04 23:51:50 ----D---- C:\Program Files (x86)\Microsoft Studios
2016-09-25 21:23:11 ----D---- C:\škola
2016-09-25 00:54:48 ----D---- C:\Program Files (x86)\Everybodys Gone to the Rapture
2016-09-24 14:20:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Yousician Launcher
2016-09-21 19:42:59 ----D---- C:\Users\KROBOT\AppData\Roaming\Eidos Montreal
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srvnet.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv2.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv.sys
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wucltux.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuaueng.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuauclt.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\WinSetupUI.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups2.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\wups.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\olepro32.dll
2016-09-21 13:29:41 ----A---- C:\windows\system32\msiexec.exe
2016-09-21 13:29:41 ----A---- C:\windows\system32\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msiexec.exe
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\asycfilt.dll
2016-09-21 13:29:40 ----A---- C:\windows\system32\consent.exe
2016-09-21 13:29:40 ----A---- C:\windows\system32\asycfilt.dll
2016-09-21 13:29:37 ----A---- C:\windows\SYSWOW64\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\appinfo.dll
2016-09-21 13:29:36 ----A---- C:\windows\system32\msimsg.dll
2016-09-21 13:29:35 ----A---- C:\windows\SYSWOW64\msimsg.dll
2016-09-21 13:29:05 ----A---- C:\windows\SYSWOW64\tzres.dll
2016-09-21 13:29:05 ----A---- C:\windows\system32\tzres.dll
2016-09-21 13:28:54 ----A---- C:\windows\SYSWOW64\user32.dll
2016-09-21 13:28:54 ----A---- C:\windows\system32\user32.dll
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpip.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\netio.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2016-09-21 13:27:56 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2016-09-21 13:27:56 ----A---- C:\windows\system32\oleaut32.dll
2016-09-21 12:51:55 ----D---- C:\Hudba
2016-09-21 12:01:05 ----D---- C:\Program Files (x86)\Steam
======List of files/folders modified in the last 1 month======
2016-10-15 21:15:51 ----D---- C:\Program Files\trend micro
2016-10-15 21:15:29 ----D---- C:\windows\temp
2016-10-15 18:58:36 ----A---- C:\windows\SYSWOW64\log.txt
2016-10-15 18:55:29 ----D---- C:\windows\system32\catroot2
2016-10-15 18:55:03 ----D---- C:\ProgramData\PDFC
2016-10-15 17:57:25 ----D---- C:\windows\system32\config
2016-10-15 15:29:33 ----D---- C:\windows\System32
2016-10-15 15:00:57 ----D---- C:\windows
2016-10-15 01:28:27 ----RD---- C:\Program Files (x86)
2016-10-15 01:28:27 ----D---- C:\windows\system32\drivers
2016-10-15 00:58:28 ----D---- C:\windows\SysWOW64
2016-10-15 00:58:28 ----A---- C:\windows\SYSWOW64\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\OpenAL32.dll
2016-10-15 00:58:27 ----A---- C:\windows\SYSWOW64\OpenAL32.dll
2016-10-15 00:58:19 ----RSD---- C:\windows\assembly
2016-10-15 00:57:44 ----SHD---- C:\System Volume Information
2016-10-13 17:51:38 ----D---- C:\windows\Logs
2016-10-13 16:05:45 ----SHD---- C:\windows\Installer
2016-10-13 12:47:32 ----D---- C:\windows\Microsoft.NET
2016-10-13 10:58:43 ----D---- C:\windows\winsxs
2016-10-13 10:43:37 ----D---- C:\windows\inf
2016-10-13 10:43:37 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\en-US
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\Dism
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-10-13 10:24:05 ----D---- C:\Program Files\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files\Internet Explorer
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-13 10:24:04 ----D---- C:\windows\system32\en-US
2016-10-13 10:24:04 ----D---- C:\windows\system32\Dism
2016-10-13 10:24:04 ----D---- C:\windows\system32\cs-CZ
2016-10-13 10:24:03 ----SD---- C:\windows\system32\CompatTel
2016-10-13 10:24:03 ----D---- C:\windows\system32\Boot
2016-10-13 10:24:03 ----D---- C:\windows\system32\appraiser
2016-10-13 10:24:03 ----D---- C:\windows\AppPatch
2016-10-13 10:24:02 ----D---- C:\windows\system32\drivers\cs-CZ
2016-10-13 10:24:02 ----D---- C:\windows\cs-CZ
2016-10-13 10:23:59 ----D---- C:\windows\system32\DriverStore
2016-10-13 10:21:58 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 00:11:19 ----D---- C:\ProgramData\Microsoft Help
2016-10-13 00:10:39 ----D---- C:\windows\system32\MRT
2016-10-13 00:01:30 ----D---- C:\windows\debug
2016-10-13 00:01:23 ----AC---- C:\windows\system32\MRT.exe
2016-10-12 23:55:31 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-12 23:16:50 ----D---- C:\Downloads
2016-10-09 15:03:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Opera Software
2016-10-09 15:03:45 ----D---- C:\windows\system32\Tasks
2016-10-09 15:03:45 ----D---- C:\Program Files (x86)\Opera
2016-10-07 21:12:38 ----D---- C:\windows\system32\NDF
2016-10-04 19:55:08 ----D---- C:\fitko
2016-10-01 15:54:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-10-01 15:54:34 ----D---- C:\Program Files (x86)\Rockstar Games
2016-10-01 12:05:03 ----D---- C:\windows\Prefetch
2016-09-28 13:35:31 ----D---- C:\windows\system32\catroot
2016-09-28 13:34:42 ----D---- C:\Program Files\Microsoft Security Client
2016-09-28 13:34:02 ----D---- C:\Program Files (x86)\Microsoft Security Client
2016-09-24 19:45:59 ----D---- C:\Games
2016-09-24 11:18:16 ----D---- C:\ProgramData\Origin
2016-09-24 11:17:45 ----D---- C:\windows\SYSWOW64\directx
2016-09-24 11:16:35 ----HD---- C:\windows\msdownld.tmp
2016-09-21 22:24:02 ----RD---- C:\Program Files
2016-09-21 22:24:02 ----D---- C:\windows\ShellNew
2016-09-20 20:06:00 ----D---- C:\ProgramData\GFACE
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2012-09-07 31040]
R0 iaStor;Intel RAID Controller; C:\windows\system32\drivers\iaStor.sys [2013-05-31 568640]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hcs.sys [2015-01-16 20464]
R0 JRAID;JRAID; C:\windows\system32\DRIVERS\jraid.sys [2013-05-31 123704]
R0 MfeEpeOpal;MfeEpeOpal; C:\windows\system32\drivers\MfeEpeOpal.sys [2013-03-27 91432]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2013-03-27 158760]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2012-03-08 58000]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2010-01-26 44576]
R1 SCDEmu;SCDEmu; C:\windows\system32\drivers\SCDEmu.sys [2012-08-17 126944]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2013-06-20 314016]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2013-06-20 43680]
R2 SSPORT;SSPORT; \??\C:\windows\system32\Drivers\SSPORT.sys [2012-02-15 11576]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2012-09-07 43328]
R3 AMPPAL;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\AMPPAL.sys [2013-07-29 164832]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2012-02-03 42816]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\windows\system32\drivers\bcbtums.sys [2015-01-16 172760]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2012-07-01 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2015-01-16 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2015-01-16 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2015-01-16 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2015-01-16 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2015-01-16 21544]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c62x64.sys [2014-05-02 495376]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2015-08-03 33856]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2015-01-16 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3xhc.sys [2015-01-16 795632]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2014-01-24 176880]
R3 johci;JMicron 1394 Filter Driver; C:\windows\system32\DRIVERS\johci.sys [2013-05-31 26208]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2013-10-25 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\windows\system32\DRIVERS\Netwsw00.sys [2014-07-01 11524096]
R3 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2015-12-16 205456]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2016-03-28 34544]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2013-05-31 1064184]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-31 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2016-03-28 555760]
R3 TPM;Čip TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AMPPALP;Protokol Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\amppal.sys [2013-07-29 164832]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2012-02-02 89640]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2012-01-31 64312]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver; C:\windows\system32\DRIVERS\evolve.sys [2016-03-19 21656]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys []
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2015-05-19 46768]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrvAMDASF;SmbDrvAMDASF; C:\windows\system32\drivers\Smb_driver_AMDASF.sys [2012-05-19 25912]
S3 SmbDrvIntel;SmbDrvIntel; C:\windows\system32\drivers\Smb_driver_Intel.sys [2016-03-28 34544]
S3 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 tap0901;TAP-Windows Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2014-02-05 772064]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-03-06 1008344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-07-20 494456]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-12-04 638880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2016-09-13 2621448]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2012-03-14 152992]
R2 HPFSService;File Sanitizer for HP ProtectTools; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2012-08-07 378488]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2012-09-07 33600]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-05-31 13632]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
R2 IFXTCS;Trusted Platform Core Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [2012-04-23 984440]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-10-25 131032]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-10-25 165336]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-08-31 419248]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-10-25 279000]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2013-03-27 1327104]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-08-30 120888]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2016-01-28 1263040]
R2 NVWMI;NVIDIA WMI Provider; C:\windows\system32\nvwmi64.exe [2016-04-15 3167288]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2016-08-10 1719040]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [2012-04-23 212344]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-12-04 157088]
R2 RoxioBurnLauncher;Roxio Burn Launcher; C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2012-03-21 536848]
R2 SearchIndexer;Search Indexer; C:\windows\system32\svchost.exe [2009-07-14 27136]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-31 327680]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2012-04-06 498352]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-10-25 366040]
R3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2015-10-08 1527520]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-08-30 361816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-08-28 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 EasyAntiCheat;EasyAntiCheat; C:\windows\syswow64\EasyAntiCheat.exe [2016-06-29 249104]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2012-04-27 477056]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-09-30 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-07-26 651576]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-12-04 268192]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2012-03-07 1118480]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2011-12-08 76416]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2012-03-09 117552]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s PC
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]/64
:services
Bonjour Service
NMIndexingService
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s PC
Logfile of random's system information tool 1.10 (written by random/random)
Run by KROBOT at 2016-10-15 22:09:50
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 395 GB (57%) free of 692 GB
Total RAM: 4029 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:00, on 15.10.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18500)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\KROBOT.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [File Sanitizer] c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IFXSPMGT] "c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\windows\system32\nvwmi64.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Roxio Burn Launcher (RoxioBurnLauncher) - Unknown owner - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 15610 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\windows\system32\nvvsvc.exe"
"C:\windows\system32\nvwmi64.exe"
C:\windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
winlogon.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 19742848
\??\C:\windows\system32\conhost.exe "168327350-1367291808-131233916417897405291054588265-1424896910738066733-103928376
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session -first
taskeng.exe {D29D2345-135B-4409-8D4A-743B8590630E}
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe"
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
C:\windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskmgr.exe /3
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-14740821-79c6-4f18-9b45-aafefb7a0168 -SystemEventPortName:HostProcess-157e1c75-4ff0-43ee-b149-394f067402e1 -IoCancelEventPortName:HostProcess-bbfa3b96-4c13-4c4d-99da-e225c4f7a256 -NonStateChangingEventPortName:HostProcess-fee70f4a-703f-4035-b4fb-0ca5ea303a55 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7db7fce7-0042-459f-9fb2-4cfe2c6992c3 -DeviceGroupId:
C:\windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\windows\System32\rundll32.exe" "C:\Program Files\TextEnhance\TextEnhance.dll",_
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
taskeng.exe {D04E10B3-D9D7-4F76-A232-09839AA41507}
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe" "-cachedir=C:\Users\KROBOT\AppData\Local\Steam\htmlcache" "-steampid=5880" "-buildid=1476379980" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=6784
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=gpu-process --channel="6784.0.1695720049\152756008" --mojo-application-channel-token=B2FC8F181DAA2710C868AE2C9BE98A47 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x11be --gpu-driver-vendor=NVIDIA --gpu-driver-version=10.18.13.6180 --gpu-driver-date=1-28-2016 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --mojo-platform-channel-handle=1192 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=2525E83FC5E656F50A632D3569AAFF5A --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=44F2A49379228A42E08A13D9E6EA8EA9 --mojo-application-channel-token=2525E83FC5E656F50A632D3569AAFF5A --channel="6784.2.1935358588\114863172" --mojo-platform-channel-handle=1792 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=BE2C10312B497A695C077F70042AA75C --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=29536A476C4984EEAE7E6AFE230089B2 --mojo-application-channel-token=BE2C10312B497A695C077F70042AA75C --channel="6784.3.1650568320\812367733" --mojo-platform-channel-handle=1860 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=215F9DB4355FE5F21D6F4E8FC9645D32 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=E933B1B8FCAB81171F4D1064D1602CE2 --mojo-application-channel-token=215F9DB4355FE5F21D6F4E8FC9645D32 --channel="6784.5.1990137751\99125467" --mojo-platform-channel-handle=2104 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=34F9B0A1F6D1B833E2DB18BC63036EA7 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=5B2679FA0AE21F0ED529A115D156BD1F --mojo-application-channel-token=34F9B0A1F6D1B833E2DB18BC63036EA7 --channel="6784.7.550667962\1158628860" --mojo-platform-channel-handle=2196 /prefetch:1
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Users\KROBOT\AppData\Local\Temp\g7A8D.tmp.exe
"C:\Users\KROBOT\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=E477C24EF2EA172A7C9889B9261ABF82 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=347032BFF750CD973985179C7A23CD29 --mojo-application-channel-token=E477C24EF2EA172A7C9889B9261ABF82 --channel="6784.11.179798280\208734668" --mojo-platform-channel-handle=2152 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=B8B1572B94B7F5D99DBEFE227A5B3052 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=AB90FB12740A43DE6B2ECF36C2D4A3EB --mojo-application-channel-token=B8B1572B94B7F5D99DBEFE227A5B3052 --channel="6784.12.242886214\177419801" --mojo-platform-channel-handle=4684 /prefetch:1
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe -check pepperplugin
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-08-07 122488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25 414776]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2012-03-14 15232]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-02-20 456704]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-31 1664000]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2016-08-30 1354712]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-03-28 2816240]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2016-04-15 2171960]
"rundll32"=C:\Program Files\TextEnhance\TextEnhance.dll [2015-05-11 2705920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-10-13 2860832]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-05 8894680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-07-05 67384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2016-07-26 176952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2016-09-13 5565960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-05-31 56128]
"JMB36X IDE Setup"=C:\windows\RaidTool\xInsIDE.exe [2014-01-24 43608]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2015-01-16 292088]
"File Sanitizer"=c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2012-08-07 12313720]
"IFXSPMGT"=c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2015-10-08 191200]
""= []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-10-15 22:05:17 ----D---- C:\_OTM
2016-10-15 15:28:13 ----D---- C:\AdwCleaner
2016-10-15 15:07:15 ----D---- C:\rsit
2016-10-15 14:57:51 ----D---- C:\FRST
2016-10-12 14:52:02 ----D---- C:\Program Files (x86)\Electronic Arts
2016-10-12 13:12:30 ----A---- C:\windows\system32\invagent.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\generaltel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\devinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-10-12 13:12:30 ----A---- C:\windows\system32\centel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\appraiser.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aepic.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aeinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\acmigration.dll
2016-10-12 13:12:26 ----A---- C:\windows\system32\mshtml.dll
2016-10-12 13:12:25 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-10-12 13:12:24 ----A---- C:\windows\system32\ieframe.dll
2016-10-12 13:12:23 ----A---- C:\windows\SYSWOW64\wmp.dll
2016-10-12 13:12:23 ----A---- C:\windows\system32\wmp.dll
2016-10-12 13:12:22 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-10-12 13:12:21 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\mf.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\jscript9.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\mf.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\blackbox.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\WsmSvc.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\iertutil.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\drmv2clt.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\blackbox.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\drmv2clt.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\quartz.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\ntoskrnl.exe
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\scavengeui.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\MSVidCtl.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\lsasrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\audiosrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WsmWmiPl.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManMigrationPlugin.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManHTTPConfig.exe
2016-10-12 13:12:17 ----A---- C:\windows\system32\vbscript.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\DWrite.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drivers\PEAuth.sys
2016-10-12 13:12:17 ----A---- C:\windows\system32\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WsmWmiPl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManMigrationPlugin.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManHTTPConfig.exe
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\MSVidCtl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\AudioEng.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\win32k.sys
2016-10-12 13:12:16 ----A---- C:\windows\system32\msfeeds.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\mfplat.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\FntCache.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioSes.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioEng.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\DWrite.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\pcasvc.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\mfps.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\EncDump.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\drivers\mountmgr.sys
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-10-12 13:12:14 ----A---- C:\windows\system32\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\system32\inetcomm.dll
2016-10-12 13:12:14 ----A---- C:\windows\system32\drivers\dfsc.sys
2016-10-12 13:12:14 ----A---- C:\windows\system32\audiodg.exe
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-10-12 13:12:13 ----A---- C:\windows\system32\msscp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\msscp.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\WebClnt.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\msnetobj.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\mrxdav.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\msnetobj.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcawrk.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcalua.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcadm.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\ie4uinit.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\davclnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\certcli.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\davclnt.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\msmmsp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\jscript.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\rpcrt4.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\pcaevts.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieui.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieapfltr.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\dxtrans.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\webcheck.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\occache.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\msrating.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\mshtmled.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\kerberos.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jsproxy.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jscript9diag.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\dxtmsft.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\occache.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\smss.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\schannel.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\inseng.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieUnatt.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\crypt32.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\advapi32.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wintrust.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wdigest.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\TSpkg.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\rpchttp.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\ncrypt.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\msv1_0.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\kernel32.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iesetup.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iernonce.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-10-12 13:12:06 ----A---- C:\windows\system32\cryptsvc.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\crypt32.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\wow64win.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\winsrv.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\srcore.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\lsass.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\KernelBase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\ieetwcollector.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptnet.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptbase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\conhost.exe
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\wintrust.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64cpu.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\sspisrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\srclient.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\drivers\appid.sys
2016-10-12 13:12:04 ----A---- C:\windows\system32\csrsrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\auditpol.exe
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\appidapi.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\setbcdlocale.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\rstrui.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidsvc.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidpolicyconverter.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidcertstorecheck.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidapi.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\user.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-10-12 13:11:59 ----A---- C:\windows\system32\apisetschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\adtschema.dll
2016-10-12 13:11:57 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbuhci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbport.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbohci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbhub.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbehci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbccgp.sys
2016-10-12 13:11:43 ----A---- C:\windows\system32\drivers\usbd.sys
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\explorer.exe
2016-10-12 13:11:42 ----A---- C:\windows\system32\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\ExplorerFrame.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\authui.dll
2016-10-12 13:11:42 ----A---- C:\windows\explorer.exe
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\authui.dll
2016-10-12 13:11:38 ----A---- C:\windows\SYSWOW64\poqexec.exe
2016-10-12 13:11:38 ----A---- C:\windows\system32\poqexec.exe
2016-10-07 12:32:08 ----D---- C:\Program Files (x86)\The Turing Test
2016-10-04 23:51:50 ----D---- C:\Program Files (x86)\Microsoft Studios
2016-09-25 21:23:11 ----D---- C:\škola
2016-09-25 00:54:48 ----D---- C:\Program Files (x86)\Everybodys Gone to the Rapture
2016-09-24 14:20:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Yousician Launcher
2016-09-21 19:42:59 ----D---- C:\Users\KROBOT\AppData\Roaming\Eidos Montreal
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srvnet.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv2.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv.sys
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wucltux.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuaueng.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuauclt.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\WinSetupUI.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups2.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\wups.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\olepro32.dll
2016-09-21 13:29:41 ----A---- C:\windows\system32\msiexec.exe
2016-09-21 13:29:41 ----A---- C:\windows\system32\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msiexec.exe
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\asycfilt.dll
2016-09-21 13:29:40 ----A---- C:\windows\system32\consent.exe
2016-09-21 13:29:40 ----A---- C:\windows\system32\asycfilt.dll
2016-09-21 13:29:37 ----A---- C:\windows\SYSWOW64\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\appinfo.dll
2016-09-21 13:29:36 ----A---- C:\windows\system32\msimsg.dll
2016-09-21 13:29:35 ----A---- C:\windows\SYSWOW64\msimsg.dll
2016-09-21 13:29:05 ----A---- C:\windows\SYSWOW64\tzres.dll
2016-09-21 13:29:05 ----A---- C:\windows\system32\tzres.dll
2016-09-21 13:28:54 ----A---- C:\windows\SYSWOW64\user32.dll
2016-09-21 13:28:54 ----A---- C:\windows\system32\user32.dll
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpip.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\netio.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2016-09-21 13:27:56 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2016-09-21 13:27:56 ----A---- C:\windows\system32\oleaut32.dll
2016-09-21 12:51:55 ----D---- C:\Hudba
2016-09-21 12:01:05 ----D---- C:\Program Files (x86)\Steam
======List of files/folders modified in the last 1 month======
2016-10-15 22:09:52 ----D---- C:\Program Files\trend micro
2016-10-15 22:09:39 ----D---- C:\windows\temp
2016-10-15 22:07:09 ----D---- C:\ProgramData\PDFC
2016-10-15 22:06:32 ----D---- C:\windows\system32\config
2016-10-15 22:06:03 ----D---- C:\windows\SysWOW64
2016-10-15 22:06:03 ----D---- C:\windows
2016-10-15 22:05:18 ----D---- C:\windows\Tasks
2016-10-15 21:11:23 ----A---- C:\windows\SYSWOW64\log.txt
2016-10-15 18:55:29 ----D---- C:\windows\system32\catroot2
2016-10-15 15:29:33 ----D---- C:\windows\System32
2016-10-15 01:28:27 ----RD---- C:\Program Files (x86)
2016-10-15 01:28:27 ----D---- C:\windows\system32\drivers
2016-10-15 00:58:28 ----A---- C:\windows\SYSWOW64\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\OpenAL32.dll
2016-10-15 00:58:27 ----A---- C:\windows\SYSWOW64\OpenAL32.dll
2016-10-15 00:58:19 ----RSD---- C:\windows\assembly
2016-10-15 00:57:44 ----SHD---- C:\System Volume Information
2016-10-13 17:51:38 ----D---- C:\windows\Logs
2016-10-13 16:05:45 ----SHD---- C:\windows\Installer
2016-10-13 12:47:32 ----D---- C:\windows\Microsoft.NET
2016-10-13 10:58:43 ----D---- C:\windows\winsxs
2016-10-13 10:43:37 ----D---- C:\windows\inf
2016-10-13 10:43:37 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\en-US
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\Dism
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-10-13 10:24:05 ----D---- C:\Program Files\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files\Internet Explorer
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-13 10:24:04 ----D---- C:\windows\system32\en-US
2016-10-13 10:24:04 ----D---- C:\windows\system32\Dism
2016-10-13 10:24:04 ----D---- C:\windows\system32\cs-CZ
2016-10-13 10:24:03 ----SD---- C:\windows\system32\CompatTel
2016-10-13 10:24:03 ----D---- C:\windows\system32\Boot
2016-10-13 10:24:03 ----D---- C:\windows\system32\appraiser
2016-10-13 10:24:03 ----D---- C:\windows\AppPatch
2016-10-13 10:24:02 ----D---- C:\windows\system32\drivers\cs-CZ
2016-10-13 10:24:02 ----D---- C:\windows\cs-CZ
2016-10-13 10:23:59 ----D---- C:\windows\system32\DriverStore
2016-10-13 10:21:58 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 00:11:19 ----D---- C:\ProgramData\Microsoft Help
2016-10-13 00:10:39 ----D---- C:\windows\system32\MRT
2016-10-13 00:01:30 ----D---- C:\windows\debug
2016-10-13 00:01:23 ----AC---- C:\windows\system32\MRT.exe
2016-10-12 23:55:31 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-12 23:16:50 ----D---- C:\Downloads
2016-10-09 15:03:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Opera Software
2016-10-09 15:03:45 ----D---- C:\windows\system32\Tasks
2016-10-09 15:03:45 ----D---- C:\Program Files (x86)\Opera
2016-10-07 21:12:38 ----D---- C:\windows\system32\NDF
2016-10-04 19:55:08 ----D---- C:\fitko
2016-10-01 15:54:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-10-01 15:54:34 ----D---- C:\Program Files (x86)\Rockstar Games
2016-10-01 12:05:03 ----D---- C:\windows\Prefetch
2016-09-28 13:35:31 ----D---- C:\windows\system32\catroot
2016-09-28 13:34:42 ----D---- C:\Program Files\Microsoft Security Client
2016-09-28 13:34:02 ----D---- C:\Program Files (x86)\Microsoft Security Client
2016-09-24 19:45:59 ----D---- C:\Games
2016-09-24 11:18:16 ----D---- C:\ProgramData\Origin
2016-09-24 11:17:45 ----D---- C:\windows\SYSWOW64\directx
2016-09-21 22:24:02 ----RD---- C:\Program Files
2016-09-21 22:24:02 ----D---- C:\windows\ShellNew
2016-09-20 20:06:00 ----D---- C:\ProgramData\GFACE
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2012-09-07 31040]
R0 iaStor;Intel RAID Controller; C:\windows\system32\drivers\iaStor.sys [2013-05-31 568640]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hcs.sys [2015-01-16 20464]
R0 JRAID;JRAID; C:\windows\system32\DRIVERS\jraid.sys [2013-05-31 123704]
R0 MfeEpeOpal;MfeEpeOpal; C:\windows\system32\drivers\MfeEpeOpal.sys [2013-03-27 91432]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2013-03-27 158760]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2012-03-08 58000]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2010-01-26 44576]
R1 SCDEmu;SCDEmu; C:\windows\system32\drivers\SCDEmu.sys [2012-08-17 126944]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2013-06-20 314016]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2013-06-20 43680]
R2 SSPORT;SSPORT; \??\C:\windows\system32\Drivers\SSPORT.sys [2012-02-15 11576]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2012-09-07 43328]
R3 AMPPAL;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\AMPPAL.sys [2013-07-29 164832]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2012-02-03 42816]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\windows\system32\drivers\bcbtums.sys [2015-01-16 172760]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2012-07-01 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2015-01-16 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2015-01-16 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2015-01-16 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2015-01-16 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2015-01-16 21544]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c62x64.sys [2014-05-02 495376]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2015-08-03 33856]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2015-01-16 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3xhc.sys [2015-01-16 795632]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2014-01-24 176880]
R3 johci;JMicron 1394 Filter Driver; C:\windows\system32\DRIVERS\johci.sys [2013-05-31 26208]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2013-10-25 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\windows\system32\DRIVERS\Netwsw00.sys [2014-07-01 11524096]
R3 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2015-12-16 205456]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2016-03-28 34544]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2013-05-31 1064184]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-31 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2016-03-28 555760]
R3 TPM;Čip TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AMPPALP;Protokol Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\amppal.sys [2013-07-29 164832]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2012-02-02 89640]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2012-01-31 64312]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver; C:\windows\system32\DRIVERS\evolve.sys [2016-03-19 21656]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys []
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2015-05-19 46768]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrvAMDASF;SmbDrvAMDASF; C:\windows\system32\drivers\Smb_driver_AMDASF.sys [2012-05-19 25912]
S3 SmbDrvIntel;SmbDrvIntel; C:\windows\system32\drivers\Smb_driver_Intel.sys [2016-03-28 34544]
S3 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 tap0901;TAP-Windows Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-03-06 1008344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-07-20 494456]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-12-04 638880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2016-09-13 2621448]
R2 HPFSService;File Sanitizer for HP ProtectTools; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2012-08-07 378488]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2012-09-07 33600]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
R2 IFXTCS;Trusted Platform Core Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [2012-04-23 984440]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-10-25 165336]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-08-31 419248]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2013-03-27 1327104]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-08-30 120888]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2016-01-28 1263040]
R2 NVWMI;NVIDIA WMI Provider; C:\windows\system32\nvwmi64.exe [2016-04-15 3167288]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2016-08-10 1719040]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [2012-04-23 212344]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-12-04 157088]
R2 SearchIndexer;Search Indexer; C:\windows\system32\svchost.exe [2009-07-14 27136]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-31 327680]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2012-04-06 498352]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-08-30 361816]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2014-02-05 772064]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2012-03-14 152992]
S2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-05-31 13632]
S2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-10-25 131032]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-10-25 279000]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 RoxioBurnLauncher;Roxio Burn Launcher; C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2012-03-21 536848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-10-25 366040]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-08-28 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 EasyAntiCheat;EasyAntiCheat; C:\windows\syswow64\EasyAntiCheat.exe [2016-06-29 249104]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2012-04-27 477056]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2015-10-08 1527520]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-09-30 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-07-26 651576]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-12-04 268192]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2012-03-07 1118480]
S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2011-12-08 76416]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2012-03-09 117552]
-----------------EOF-----------------
Run by KROBOT at 2016-10-15 22:09:50
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 395 GB (57%) free of 692 GB
Total RAM: 4029 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:00, on 15.10.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18500)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\KROBOT.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [File Sanitizer] c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IFXSPMGT] "c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe" /NotifyLogon
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\windows\system32\nvwmi64.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Roxio Burn Launcher (RoxioBurnLauncher) - Unknown owner - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 15610 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\windows\system32\nvvsvc.exe"
"C:\windows\system32\nvwmi64.exe"
C:\windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
winlogon.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 19742848
\??\C:\windows\system32\conhost.exe "168327350-1367291808-131233916417897405291054588265-1424896910738066733-103928376
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session -first
taskeng.exe {D29D2345-135B-4409-8D4A-743B8590630E}
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe"
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
C:\windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskmgr.exe /3
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-14740821-79c6-4f18-9b45-aafefb7a0168 -SystemEventPortName:HostProcess-157e1c75-4ff0-43ee-b149-394f067402e1 -IoCancelEventPortName:HostProcess-bbfa3b96-4c13-4c4d-99da-e225c4f7a256 -NonStateChangingEventPortName:HostProcess-fee70f4a-703f-4035-b4fb-0ca5ea303a55 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7db7fce7-0042-459f-9fb2-4cfe2c6992c3 -DeviceGroupId:
C:\windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\windows\System32\rundll32.exe" "C:\Program Files\TextEnhance\TextEnhance.dll",_
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
taskeng.exe {D04E10B3-D9D7-4F76-A232-09839AA41507}
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe" "-cachedir=C:\Users\KROBOT\AppData\Local\Steam\htmlcache" "-steampid=5880" "-buildid=1476379980" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\40.0.2308.81\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=6784
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=gpu-process --channel="6784.0.1695720049\152756008" --mojo-application-channel-token=B2FC8F181DAA2710C868AE2C9BE98A47 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x11be --gpu-driver-vendor=NVIDIA --gpu-driver-version=10.18.13.6180 --gpu-driver-date=1-28-2016 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --mojo-platform-channel-handle=1192 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=2525E83FC5E656F50A632D3569AAFF5A --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=44F2A49379228A42E08A13D9E6EA8EA9 --mojo-application-channel-token=2525E83FC5E656F50A632D3569AAFF5A --channel="6784.2.1935358588\114863172" --mojo-platform-channel-handle=1792 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=BE2C10312B497A695C077F70042AA75C --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=29536A476C4984EEAE7E6AFE230089B2 --mojo-application-channel-token=BE2C10312B497A695C077F70042AA75C --channel="6784.3.1650568320\812367733" --mojo-platform-channel-handle=1860 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=215F9DB4355FE5F21D6F4E8FC9645D32 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=E933B1B8FCAB81171F4D1064D1602CE2 --mojo-application-channel-token=215F9DB4355FE5F21D6F4E8FC9645D32 --channel="6784.5.1990137751\99125467" --mojo-platform-channel-handle=2104 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=34F9B0A1F6D1B833E2DB18BC63036EA7 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=5B2679FA0AE21F0ED529A115D156BD1F --mojo-application-channel-token=34F9B0A1F6D1B833E2DB18BC63036EA7 --channel="6784.7.550667962\1158628860" --mojo-platform-channel-handle=2196 /prefetch:1
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Users\KROBOT\AppData\Local\Temp\g7A8D.tmp.exe
"C:\Users\KROBOT\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=E477C24EF2EA172A7C9889B9261ABF82 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=347032BFF750CD973985179C7A23CD29 --mojo-application-channel-token=E477C24EF2EA172A7C9889B9261ABF82 --channel="6784.11.179798280\208734668" --mojo-platform-channel-handle=2152 /prefetch:1
"C:\Program Files (x86)\Opera\40.0.2308.81\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=B8B1572B94B7F5D99DBEFE227A5B3052 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --crash-reporter-pid=6980 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=AB90FB12740A43DE6B2ECF36C2D4A3EB --mojo-application-channel-token=B8B1572B94B7F5D99DBEFE227A5B3052 --channel="6784.12.242886214\177419801" --mojo-platform-channel-handle=4684 /prefetch:1
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe -check pepperplugin
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-08-07 122488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25 414776]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2012-03-14 15232]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-02-20 456704]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-31 1664000]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2016-08-30 1354712]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-03-28 2816240]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2016-04-15 2171960]
"rundll32"=C:\Program Files\TextEnhance\TextEnhance.dll [2015-05-11 2705920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-10-13 2860832]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-05 8894680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-07-05 67384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2016-07-26 176952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2016-09-13 5565960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-05-31 56128]
"JMB36X IDE Setup"=C:\windows\RaidTool\xInsIDE.exe [2014-01-24 43608]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2015-01-16 292088]
"File Sanitizer"=c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2012-08-07 12313720]
"IFXSPMGT"=c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2015-10-08 191200]
""= []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-10-15 22:05:17 ----D---- C:\_OTM
2016-10-15 15:28:13 ----D---- C:\AdwCleaner
2016-10-15 15:07:15 ----D---- C:\rsit
2016-10-15 14:57:51 ----D---- C:\FRST
2016-10-12 14:52:02 ----D---- C:\Program Files (x86)\Electronic Arts
2016-10-12 13:12:30 ----A---- C:\windows\system32\invagent.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\generaltel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\devinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-10-12 13:12:30 ----A---- C:\windows\system32\centel.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\appraiser.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aepic.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\aeinv.dll
2016-10-12 13:12:30 ----A---- C:\windows\system32\acmigration.dll
2016-10-12 13:12:26 ----A---- C:\windows\system32\mshtml.dll
2016-10-12 13:12:25 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-10-12 13:12:24 ----A---- C:\windows\system32\ieframe.dll
2016-10-12 13:12:23 ----A---- C:\windows\SYSWOW64\wmp.dll
2016-10-12 13:12:23 ----A---- C:\windows\system32\wmp.dll
2016-10-12 13:12:22 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-10-12 13:12:21 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\mf.dll
2016-10-12 13:12:21 ----A---- C:\windows\system32\jscript9.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\mf.dll
2016-10-12 13:12:20 ----A---- C:\windows\SYSWOW64\blackbox.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\WsmSvc.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\wininet.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\iertutil.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\drmv2clt.dll
2016-10-12 13:12:20 ----A---- C:\windows\system32\blackbox.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-10-12 13:12:19 ----A---- C:\windows\SYSWOW64\drmv2clt.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\urlmon.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\quartz.dll
2016-10-12 13:12:19 ----A---- C:\windows\system32\ntoskrnl.exe
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-10-12 13:12:18 ----A---- C:\windows\SYSWOW64\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\wmdrmsdk.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\scavengeui.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\MSVidCtl.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\lsasrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\evr.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\audiosrv.dll
2016-10-12 13:12:18 ----A---- C:\windows\system32\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\SYSWOW64\AUDIOKSE.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WsmWmiPl.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManMigrationPlugin.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\WSManHTTPConfig.exe
2016-10-12 13:12:17 ----A---- C:\windows\system32\vbscript.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\qdvd.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\DWrite.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drmmgrtn.dll
2016-10-12 13:12:17 ----A---- C:\windows\system32\drivers\PEAuth.sys
2016-10-12 13:12:17 ----A---- C:\windows\system32\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WsmWmiPl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManMigrationPlugin.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\WSManHTTPConfig.exe
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\MSVidCtl.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\cryptui.dll
2016-10-12 13:12:16 ----A---- C:\windows\SYSWOW64\AudioEng.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\win32k.sys
2016-10-12 13:12:16 ----A---- C:\windows\system32\msfeeds.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\mfplat.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\FntCache.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioSes.dll
2016-10-12 13:12:16 ----A---- C:\windows\system32\AudioEng.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\DWrite.dll
2016-10-12 13:12:15 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\WsmAuto.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\pcasvc.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\mfps.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\EncDump.dll
2016-10-12 13:12:15 ----A---- C:\windows\system32\drivers\mountmgr.sys
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-10-12 13:12:14 ----A---- C:\windows\system32\wmploc.DLL
2016-10-12 13:12:14 ----A---- C:\windows\system32\inetcomm.dll
2016-10-12 13:12:14 ----A---- C:\windows\system32\drivers\dfsc.sys
2016-10-12 13:12:14 ----A---- C:\windows\system32\audiodg.exe
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\SYSWOW64\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\ntdll.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-10-12 13:12:13 ----A---- C:\windows\system32\msscp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\iedkcs32.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\cryptsp.dll
2016-10-12 13:12:13 ----A---- C:\windows\system32\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\msscp.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-10-12 13:12:12 ----A---- C:\windows\SYSWOW64\adsmsext.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\WebClnt.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\msnetobj.dll
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\mrxdav.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-10-12 13:12:12 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\msnetobj.dll
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\rrinstaller.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcawrk.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcalua.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\pcadm.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\mfpmp.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\ie4uinit.exe
2016-10-12 13:12:11 ----A---- C:\windows\system32\davclnt.dll
2016-10-12 13:12:11 ----A---- C:\windows\system32\certcli.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\SYSWOW64\davclnt.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmprovhost.exe
2016-10-12 13:12:10 ----A---- C:\windows\system32\wsmplpxy.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\spwmp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\msmmsp.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\jscript.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\INETRES.dll
2016-10-12 13:12:10 ----A---- C:\windows\system32\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-10-12 13:12:09 ----A---- C:\windows\SYSWOW64\dxmasf.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\rpcrt4.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\pcaevts.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieui.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\ieapfltr.dll
2016-10-12 13:12:09 ----A---- C:\windows\system32\dxtrans.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-10-12 13:12:08 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\webcheck.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\occache.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\msrating.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\mshtmled.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\kerberos.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jsproxy.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\jscript9diag.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\dxtmsft.dll
2016-10-12 13:12:08 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\occache.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-10-12 13:12:07 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\smss.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\schannel.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\inseng.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieUnatt.exe
2016-10-12 13:12:07 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\crypt32.dll
2016-10-12 13:12:07 ----A---- C:\windows\system32\advapi32.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-10-12 13:12:06 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wintrust.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\wdigest.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\TSpkg.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\sspicli.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\rpchttp.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\ncrypt.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\msv1_0.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\MshtmlDac.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\kernel32.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iesetup.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\iernonce.dll
2016-10-12 13:12:06 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-10-12 13:12:06 ----A---- C:\windows\system32\cryptsvc.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\crypt32.dll
2016-10-12 13:12:05 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\WsmRes.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\wow64win.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\winsrv.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\srcore.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\mferror.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\lsass.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\KernelBase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\ieetwcollector.exe
2016-10-12 13:12:05 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptnet.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\cryptbase.dll
2016-10-12 13:12:05 ----A---- C:\windows\system32\conhost.exe
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\wintrust.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-10-12 13:12:04 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64cpu.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\wow64.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\sspisrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\srclient.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\secur32.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\drivers\appid.sys
2016-10-12 13:12:04 ----A---- C:\windows\system32\csrsrv.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\credssp.dll
2016-10-12 13:12:04 ----A---- C:\windows\system32\auditpol.exe
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:12:03 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-10-12 13:12:03 ----A---- C:\windows\SYSWOW64\appidapi.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\setbcdlocale.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\rstrui.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\ntvdm64.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidsvc.dll
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidpolicyconverter.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidcertstorecheck.exe
2016-10-12 13:12:03 ----A---- C:\windows\system32\appidapi.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 13:12:02 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 13:12:01 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 13:12:00 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 13:11:59 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\user.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-10-12 13:11:59 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-10-12 13:11:59 ----A---- C:\windows\system32\apisetschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\msaudite.dll
2016-10-12 13:11:58 ----A---- C:\windows\system32\adtschema.dll
2016-10-12 13:11:57 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\msobjs.dll
2016-10-12 13:11:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbuhci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbport.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbohci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbhub.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbehci.sys
2016-10-12 13:11:44 ----A---- C:\windows\system32\drivers\usbccgp.sys
2016-10-12 13:11:43 ----A---- C:\windows\system32\drivers\usbd.sys
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\SYSWOW64\explorer.exe
2016-10-12 13:11:42 ----A---- C:\windows\system32\shell32.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\ExplorerFrame.dll
2016-10-12 13:11:42 ----A---- C:\windows\system32\authui.dll
2016-10-12 13:11:42 ----A---- C:\windows\explorer.exe
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2016-10-12 13:11:41 ----A---- C:\windows\SYSWOW64\authui.dll
2016-10-12 13:11:38 ----A---- C:\windows\SYSWOW64\poqexec.exe
2016-10-12 13:11:38 ----A---- C:\windows\system32\poqexec.exe
2016-10-07 12:32:08 ----D---- C:\Program Files (x86)\The Turing Test
2016-10-04 23:51:50 ----D---- C:\Program Files (x86)\Microsoft Studios
2016-09-25 21:23:11 ----D---- C:\škola
2016-09-25 00:54:48 ----D---- C:\Program Files (x86)\Everybodys Gone to the Rapture
2016-09-24 14:20:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Yousician Launcher
2016-09-21 19:42:59 ----D---- C:\Users\KROBOT\AppData\Roaming\Eidos Montreal
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srvnet.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv2.sys
2016-09-21 13:36:21 ----A---- C:\windows\system32\drivers\srv.sys
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\SYSWOW64\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuwebv.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wudriver.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wucltux.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuaueng.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuauclt.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapp.exe
2016-09-21 13:29:45 ----A---- C:\windows\system32\wuapi.dll
2016-09-21 13:29:45 ----A---- C:\windows\system32\WinSetupUI.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups2.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wups.dll
2016-09-21 13:29:42 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\wups.dll
2016-09-21 13:29:41 ----A---- C:\windows\SYSWOW64\olepro32.dll
2016-09-21 13:29:41 ----A---- C:\windows\system32\msiexec.exe
2016-09-21 13:29:41 ----A---- C:\windows\system32\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msiexec.exe
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\msi.dll
2016-09-21 13:29:40 ----A---- C:\windows\SYSWOW64\asycfilt.dll
2016-09-21 13:29:40 ----A---- C:\windows\system32\consent.exe
2016-09-21 13:29:40 ----A---- C:\windows\system32\asycfilt.dll
2016-09-21 13:29:37 ----A---- C:\windows\SYSWOW64\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\msihnd.dll
2016-09-21 13:29:37 ----A---- C:\windows\system32\appinfo.dll
2016-09-21 13:29:36 ----A---- C:\windows\system32\msimsg.dll
2016-09-21 13:29:35 ----A---- C:\windows\SYSWOW64\msimsg.dll
2016-09-21 13:29:05 ----A---- C:\windows\SYSWOW64\tzres.dll
2016-09-21 13:29:05 ----A---- C:\windows\system32\tzres.dll
2016-09-21 13:28:54 ----A---- C:\windows\SYSWOW64\user32.dll
2016-09-21 13:28:54 ----A---- C:\windows\system32\user32.dll
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\tcpip.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\netio.sys
2016-09-21 13:28:23 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2016-09-21 13:27:56 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2016-09-21 13:27:56 ----A---- C:\windows\system32\oleaut32.dll
2016-09-21 12:51:55 ----D---- C:\Hudba
2016-09-21 12:01:05 ----D---- C:\Program Files (x86)\Steam
======List of files/folders modified in the last 1 month======
2016-10-15 22:09:52 ----D---- C:\Program Files\trend micro
2016-10-15 22:09:39 ----D---- C:\windows\temp
2016-10-15 22:07:09 ----D---- C:\ProgramData\PDFC
2016-10-15 22:06:32 ----D---- C:\windows\system32\config
2016-10-15 22:06:03 ----D---- C:\windows\SysWOW64
2016-10-15 22:06:03 ----D---- C:\windows
2016-10-15 22:05:18 ----D---- C:\windows\Tasks
2016-10-15 21:11:23 ----A---- C:\windows\SYSWOW64\log.txt
2016-10-15 18:55:29 ----D---- C:\windows\system32\catroot2
2016-10-15 15:29:33 ----D---- C:\windows\System32
2016-10-15 01:28:27 ----RD---- C:\Program Files (x86)
2016-10-15 01:28:27 ----D---- C:\windows\system32\drivers
2016-10-15 00:58:28 ----A---- C:\windows\SYSWOW64\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\wrap_oal.dll
2016-10-15 00:58:28 ----A---- C:\windows\system32\OpenAL32.dll
2016-10-15 00:58:27 ----A---- C:\windows\SYSWOW64\OpenAL32.dll
2016-10-15 00:58:19 ----RSD---- C:\windows\assembly
2016-10-15 00:57:44 ----SHD---- C:\System Volume Information
2016-10-13 17:51:38 ----D---- C:\windows\Logs
2016-10-13 16:05:45 ----SHD---- C:\windows\Installer
2016-10-13 12:47:32 ----D---- C:\windows\Microsoft.NET
2016-10-13 10:58:43 ----D---- C:\windows\winsxs
2016-10-13 10:43:37 ----D---- C:\windows\inf
2016-10-13 10:43:37 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\en-US
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\Dism
2016-10-13 10:24:05 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-10-13 10:24:05 ----D---- C:\Program Files\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files\Internet Explorer
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Windows Media Player
2016-10-13 10:24:05 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-13 10:24:04 ----D---- C:\windows\system32\en-US
2016-10-13 10:24:04 ----D---- C:\windows\system32\Dism
2016-10-13 10:24:04 ----D---- C:\windows\system32\cs-CZ
2016-10-13 10:24:03 ----SD---- C:\windows\system32\CompatTel
2016-10-13 10:24:03 ----D---- C:\windows\system32\Boot
2016-10-13 10:24:03 ----D---- C:\windows\system32\appraiser
2016-10-13 10:24:03 ----D---- C:\windows\AppPatch
2016-10-13 10:24:02 ----D---- C:\windows\system32\drivers\cs-CZ
2016-10-13 10:24:02 ----D---- C:\windows\cs-CZ
2016-10-13 10:23:59 ----D---- C:\windows\system32\DriverStore
2016-10-13 10:21:58 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 00:11:19 ----D---- C:\ProgramData\Microsoft Help
2016-10-13 00:10:39 ----D---- C:\windows\system32\MRT
2016-10-13 00:01:30 ----D---- C:\windows\debug
2016-10-13 00:01:23 ----AC---- C:\windows\system32\MRT.exe
2016-10-12 23:55:31 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-12 23:16:50 ----D---- C:\Downloads
2016-10-09 15:03:47 ----D---- C:\Users\KROBOT\AppData\Roaming\Opera Software
2016-10-09 15:03:45 ----D---- C:\windows\system32\Tasks
2016-10-09 15:03:45 ----D---- C:\Program Files (x86)\Opera
2016-10-07 21:12:38 ----D---- C:\windows\system32\NDF
2016-10-04 19:55:08 ----D---- C:\fitko
2016-10-01 15:54:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-10-01 15:54:34 ----D---- C:\Program Files (x86)\Rockstar Games
2016-10-01 12:05:03 ----D---- C:\windows\Prefetch
2016-09-28 13:35:31 ----D---- C:\windows\system32\catroot
2016-09-28 13:34:42 ----D---- C:\Program Files\Microsoft Security Client
2016-09-28 13:34:02 ----D---- C:\Program Files (x86)\Microsoft Security Client
2016-09-24 19:45:59 ----D---- C:\Games
2016-09-24 11:18:16 ----D---- C:\ProgramData\Origin
2016-09-24 11:17:45 ----D---- C:\windows\SYSWOW64\directx
2016-09-21 22:24:02 ----RD---- C:\Program Files
2016-09-21 22:24:02 ----D---- C:\windows\ShellNew
2016-09-20 20:06:00 ----D---- C:\ProgramData\GFACE
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2012-09-07 31040]
R0 iaStor;Intel RAID Controller; C:\windows\system32\drivers\iaStor.sys [2013-05-31 568640]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hcs.sys [2015-01-16 20464]
R0 JRAID;JRAID; C:\windows\system32\DRIVERS\jraid.sys [2013-05-31 123704]
R0 MfeEpeOpal;MfeEpeOpal; C:\windows\system32\drivers\MfeEpeOpal.sys [2013-03-27 91432]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2013-03-27 158760]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2012-03-08 58000]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2010-01-26 44576]
R1 SCDEmu;SCDEmu; C:\windows\system32\drivers\SCDEmu.sys [2012-08-17 126944]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2013-06-20 314016]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2013-06-20 43680]
R2 SSPORT;SSPORT; \??\C:\windows\system32\Drivers\SSPORT.sys [2012-02-15 11576]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2012-09-07 43328]
R3 AMPPAL;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\AMPPAL.sys [2013-07-29 164832]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2012-02-03 42816]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\windows\system32\drivers\bcbtums.sys [2015-01-16 172760]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2012-07-01 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\windows\system32\drivers\btwampfl.sys [2015-01-16 598808]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2015-01-16 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2015-01-16 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2015-01-16 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2015-01-16 21544]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c62x64.sys [2014-05-02 495376]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2015-08-03 33856]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2015-01-16 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3xhc.sys [2015-01-16 795632]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2014-01-24 176880]
R3 johci;JMicron 1394 Filter Driver; C:\windows\system32\DRIVERS\johci.sys [2013-05-31 26208]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2013-10-25 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\windows\system32\DRIVERS\Netwsw00.sys [2014-07-01 11524096]
R3 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2015-12-16 205456]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2016-03-28 34544]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\SPUVCbv_x64.sys [2013-05-31 1064184]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-31 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2016-03-28 555760]
R3 TPM;Čip TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AMPPALP;Protokol Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\windows\system32\DRIVERS\amppal.sys [2013-07-29 164832]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2012-02-02 89640]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2012-01-31 64312]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver; C:\windows\system32\DRIVERS\evolve.sys [2016-03-19 21656]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys []
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2015-05-19 46768]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrvAMDASF;SmbDrvAMDASF; C:\windows\system32\drivers\Smb_driver_AMDASF.sys [2012-05-19 25912]
S3 SmbDrvIntel;SmbDrvIntel; C:\windows\system32\drivers\Smb_driver_Intel.sys [2016-03-28 34544]
S3 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 tap0901;TAP-Windows Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-03-06 1008344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2012-07-20 494456]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-12-04 638880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2016-09-13 2621448]
R2 HPFSService;File Sanitizer for HP ProtectTools; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2012-08-07 378488]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2012-09-07 33600]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [2012-04-23 1128312]
R2 IFXTCS;Trusted Platform Core Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [2012-04-23 984440]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-10-25 165336]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-08-31 419248]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2013-03-27 1327104]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-08-30 120888]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2016-01-28 1263040]
R2 NVWMI;NVIDIA WMI Provider; C:\windows\system32\nvwmi64.exe [2016-04-15 3167288]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2016-08-10 1719040]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [2012-04-23 212344]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-12-04 157088]
R2 SearchIndexer;Search Indexer; C:\windows\system32\svchost.exe [2009-07-14 27136]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-31 327680]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2012-04-06 498352]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-08-30 361816]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2014-02-05 772064]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2012-03-14 152992]
S2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-05-31 13632]
S2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-10-25 131032]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-10-25 279000]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 RoxioBurnLauncher;Roxio Burn Launcher; C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2012-03-21 536848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-10-25 366040]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-08-28 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 EasyAntiCheat;EasyAntiCheat; C:\windows\syswow64\EasyAntiCheat.exe [2016-06-29 249104]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2012-04-27 477056]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-28 152216]
S3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2015-10-08 1527520]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-09-30 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-07-26 651576]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-12-04 268192]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2012-03-07 1118480]
S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2011-12-08 76416]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2012-03-09 117552]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s PC
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s PC
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s PC
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 16.10.2016
Čas skenování: 11:03
Protokol: log.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.10.16.02
Databáze rootkitů: v2016.09.26.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: KROBOT
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 360845
Uplynulý čas: 17 min, 22 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 1
PUP.Optional.SpyHunter, HKLM\SOFTWARE\ENIGMASOFTWAREGROUP\SpyHunter, , [6f736d2c8317092d0eb0f116c04557a9],
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 1
PUP.Optional.ASK, C:\windows\Installer\159a8a.msi, , [26bc46532476e3539a1c500c709458a8],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 16.10.2016
Čas skenování: 11:03
Protokol: log.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.10.16.02
Databáze rootkitů: v2016.09.26.02
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: KROBOT
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 360845
Uplynulý čas: 17 min, 22 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 1
PUP.Optional.SpyHunter, HKLM\SOFTWARE\ENIGMASOFTWAREGROUP\SpyHunter, , [6f736d2c8317092d0eb0f116c04557a9],
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 1
PUP.Optional.ASK, C:\windows\Installer\159a8a.msi, , [26bc46532476e3539a1c500c709458a8],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Přispějete na provoz fóra?