chvíly po spuštění notebooku je RAM využitá na 3,65GB z 4GB... Díky
Logfile of random's system information tool 1.10 (written by random/random)
Run by Kamil at 2017-09-26 22:01:33
WIN_7 Service Pack 1
System drive C: has 30 GB (25%) free of 119 GB
Total RAM: 3949 MB (8% free)
HijackThis download failed
======Listing Processes======
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default
prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "inboxcomtoolbar@inbox.com:1.2.0.0, siteranker@siteranker.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFF12.DLL
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\extensions\
inboxcomtoolbar@inbox.com
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\searchplugins\
inbox-hledn.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26 1429216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-29 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}]
C:\PROGRA~2\SITERA~1\SiteRank.dll [2011-07-13 351448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-02-11 1246600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-29 255088]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26 1429216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-08-25 3054136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS WebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2010-03-16 1754448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKMEDIA]
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2009-08-20 170624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKOSD2]
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2009-10-27 6998656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Boingo Wi-Fi]
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-08-25 2429]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
C:\Program Files\Elantech\ETDCtrl.exe [2009-09-30 621440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HControlUser]
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files (x86)\SiteRanker\SiteRankTray.exe [2011-07-13 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-12 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-08-25 39408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Syncables]
C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [2010-04-05 370480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray64.exe [2009-11-27 487424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateLBPShortCut]
C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-08-03 1080608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk]
C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-08-25 12862]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\311~1.599\SSSCHE~1.EXE [2017-08-21 545224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Kamil^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE [2009-02-26 97680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-09-26 21:57:02 ----D---- C:\Users\Kamil\AppData\Roaming\TeamViewer
2017-09-26 21:56:31 ----D---- C:\Program Files (x86)\TeamViewer
2017-09-26 21:48:41 ----D---- C:\rsit
2017-09-26 21:48:41 ----D---- C:\Program Files\trend micro
2017-09-26 21:44:47 ----SHD---- C:\$RECYCLE.BIN
2017-09-26 21:38:58 ----A---- C:\Windows\SWREG.exe
2017-09-26 21:38:58 ----A---- C:\Windows\PEV.exe
2017-09-26 21:38:58 ----A---- C:\Windows\NIRCMD.exe
2017-09-26 21:38:58 ----A---- C:\Windows\MBR.exe
2017-09-26 21:38:57 ----A---- C:\Windows\zip.exe
2017-09-26 21:38:57 ----A---- C:\Windows\SWSC.exe
2017-09-26 21:38:57 ----A---- C:\Windows\sed.exe
2017-09-26 21:38:57 ----A---- C:\Windows\grep.exe
2017-09-26 21:38:10 ----SD---- C:\ComboFix
2017-09-26 21:37:51 ----D---- C:\Qoobox
2017-09-26 21:36:21 ----D---- C:\Windows\erdnt
2017-09-26 21:35:58 ----SD---- C:\32788R22FWJFW
2017-09-26 20:13:33 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2017-09-26 20:12:54 ----A---- C:\Windows\system32\drivers\mbae64.sys
2017-09-26 20:12:28 ----D---- C:\ProgramData\Malwarebytes
2017-09-26 20:12:28 ----D---- C:\Program Files\Malwarebytes
2017-09-25 10:10:59 ----D---- C:\Windows\pss
2017-09-21 09:52:00 ----D---- C:\Windows\Minidump
2017-09-21 08:01:42 ----N---- C:\bootsqm.dat
2017-09-20 21:34:15 ----D---- C:\ProgramData\ESET
2017-09-20 21:34:15 ----D---- C:\Program Files\ESET
2017-09-20 21:33:52 ----SHD---- C:\Config.Msi
2017-09-12 20:18:38 ----A---- C:\Windows\system32\mshtml.dll
2017-09-12 20:18:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-09-12 20:18:36 ----A---- C:\Windows\system32\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\system32\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-09-12 20:18:34 ----A---- C:\Windows\system32\wininet.dll
2017-09-12 20:18:33 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\win32k.sys
2017-09-12 20:18:33 ----A---- C:\Windows\system32\shell32.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\iertutil.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\urlmon.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmcndmgr.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmc.exe
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-09-12 20:18:29 ----A---- C:\Windows\system32\msfeeds.dll
2017-09-12 20:18:28 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\localspl.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmc.exe
2017-09-12 20:18:24 ----A---- C:\Windows\system32\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\usp10.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-09-12 20:18:22 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-09-12 20:18:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\ie4uinit.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\cic.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\nsisvc.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcshext.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcbase.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\drivers\nsiproxy.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\ntdll.dll
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-09-12 20:18:19 ----A---- C:\Windows\system32\webcheck.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\cic.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\shdocvw.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\dxtrans.dll
2017-09-12 20:18:17 ----A---- C:\Windows\system32\mshtmled.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\certcli.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\nsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\system32\iernonce.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\nsi.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\vbscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ole32.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-09-12 20:18:10 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\rpcrt4.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\drivers\srv.sys
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\smss.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\rpcss.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ntprint.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\lsasrv.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kernel32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kerberos.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ieapfltr.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\winsrv.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\schannel.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ncrypt.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\msv1_0.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\KernelBase.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\inetpp.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64win.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wdigest.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\TSpkg.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\sspicli.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\srcore.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\conhost.exe
2017-09-12 20:18:07 ----A---- C:\Windows\system32\bcrypt.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\rpchttp.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\inetppui.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-09-12 20:18:06 ----A---- C:\Windows\system32\csrsrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\sspisrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\secur32.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\lsass.exe
2017-09-12 20:18:05 ----A---- C:\Windows\system32\drivers\appid.sys
2017-09-12 20:18:05 ----A---- C:\Windows\system32\cryptbase.dll
2017-09-12 20:18:04 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-09-12 20:18:04 ----A---- C:\Windows\system32\wow64cpu.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\wpnpinst.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\rstrui.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidsvc.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidapi.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-09-12 20:18:02 ----A---- C:\Windows\system32\apisetschema.dll
2017-09-12 20:18:00 ----A---- C:\Windows\SYSWOW64\user.exe
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\adtschema.dll
2017-09-10 19:28:40 ----D---- C:\ProgramData\McAfee Security Scan
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcp120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
======List of files/folders modified in the last 1 month======
2017-09-26 21:57:16 ----D---- C:\Windows\system32\Tasks
2017-09-26 21:57:07 ----RSD---- C:\Windows\Fonts
2017-09-26 21:56:31 ----RD---- C:\Program Files (x86)
2017-09-26 21:52:48 ----D---- C:\Windows\system32\drivers\etc
2017-09-26 21:51:49 ----D---- C:\Windows\Temp
2017-09-26 21:48:41 ----RD---- C:\Program Files
2017-09-26 21:43:58 ----A---- C:\Windows\SYSWOW64\log.txt
2017-09-26 21:38:58 ----D---- C:\Windows
2017-09-26 21:37:54 ----D---- C:\Windows\system32\drivers
2017-09-26 21:30:52 ----SHD---- C:\System Volume Information
2017-09-26 21:28:28 ----A---- C:\Windows\system32\ServiceFilter.ini
2017-09-26 20:14:11 ----D---- C:\Windows\System32
2017-09-26 20:14:11 ----D---- C:\Windows\inf
2017-09-26 20:14:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-09-26 20:12:28 ----HD---- C:\ProgramData
2017-09-26 19:58:49 ----D---- C:\Windows\Microsoft.NET
2017-09-25 10:19:56 ----D---- C:\Windows\system32\NDF
2017-09-25 10:16:21 ----D---- C:\Windows\system32\DriverStore
2017-09-25 10:10:27 ----A---- C:\Windows\ntbtlog.txt
2017-09-21 20:46:33 ----D---- C:\Windows\Prefetch
2017-09-21 14:25:36 ----D---- C:\Windows\system32\config
2017-09-20 21:35:09 ----SHD---- C:\Windows\Installer
2017-09-20 21:33:35 ----D---- C:\Windows\SysWOW64
2017-09-20 21:33:07 ----RSD---- C:\Windows\assembly
2017-09-13 10:37:57 ----D---- C:\ProgramData\Microsoft Help
2017-09-13 10:37:08 ----A---- C:\Windows\win.ini
2017-09-13 10:09:03 ----D---- C:\Windows\winsxs
2017-09-13 10:03:04 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 10:03:00 ----D---- C:\Program Files\Internet Explorer
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\bg-BG
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\sl-SI
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hr-HR
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lv-LV
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lt-LT
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\sk-SK
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\et-EE
2017-09-13 10:02:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\ro-RO
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\en-US
2017-09-13 10:02:42 ----D---- C:\Windows\system32\bg-BG
2017-09-13 10:02:41 ----D---- C:\Windows\system32\sl-SI
2017-09-13 10:02:41 ----D---- C:\Windows\system32\pl-PL
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hu-HU
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hr-HR
2017-09-13 10:02:40 ----D---- C:\Windows\system32\sr-Latn-CS
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lv-LV
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lt-LT
2017-09-13 10:02:39 ----D---- C:\Windows\system32\sk-SK
2017-09-13 10:02:39 ----D---- C:\Windows\system32\et-EE
2017-09-13 10:02:39 ----D---- C:\Windows\system32\cs-CZ
2017-09-13 10:02:38 ----D---- C:\Windows\system32\ro-RO
2017-09-13 10:02:38 ----D---- C:\Windows\system32\en-US
2017-09-13 10:02:33 ----D---- C:\Windows\AppPatch
2017-09-13 10:02:31 ----D---- C:\Windows\system32\Boot
2017-09-12 23:48:57 ----D---- C:\Windows\system32\catroot2
2017-09-12 23:46:15 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-09-10 19:28:55 ----D---- C:\Program Files\McAfee Security Scan
2017-09-01 17:29:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-09-01 15:43:26 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2017-05-04 107344]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-08-06 408600]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2017-06-22 132824]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2017-05-04 178056]
R1 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2017-05-04 77224]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-11-11 6104576]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-11-13 67072]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2017-09-26 253888]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-12 1799680]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2009-11-27 505344]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-01 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-12-02 27136]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-12-02 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-12-02 9216]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-08 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-11-11 202752]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-11-10 96896]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-06-15 249648]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-08-03 864032]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2017-06-13 2625368]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-10-01 262144]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-07 6058960]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe [2009-11-27 243712]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-26 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-26 125064]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
S2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-04-18 996736]
S2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2017-04-18 16160]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-06 270016]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-07-07 195336]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-11 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-08-13 116224]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.599\McCHSvc.exe [2017-08-21 404368]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-09-01 175568]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-04-18 86776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosim o pomoc win 7 využito 100% RAM
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc win 7 využito 100% RAM
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc win 7 využito 100% RAM
trvá to strašně dlouho a skoro se to nehýbe - nemám to zkusit třeba v nouzovém režimu ?
Re: prosim o pomoc win 7 využito 100% RAM
# AdwCleaner 7.0.2.1 - Logfile created on Tue Sep 26 21:00:06 2017
# Updated on 2017/29/08 by Malwarebytes
# Database: 08-29-2017.2
# Running on Windows 7 Home Premium (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
C:/AdwCleaner/AdwCleaner[C0].txt - [6613 B] - [2017/9/26 20:48:39]
C:/AdwCleaner/AdwCleaner[S0].txt - [7222 B] - [2017/9/26 20:48:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########
# Updated on 2017/29/08 by Malwarebytes
# Database: 08-29-2017.2
# Running on Windows 7 Home Premium (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
C:/AdwCleaner/AdwCleaner[C0].txt - [6613 B] - [2017/9/26 20:48:39]
C:/AdwCleaner/AdwCleaner[S0].txt - [7222 B] - [2017/9/26 20:48:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc win 7 využito 100% RAM
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc win 7 využito 100% RAM
Logfile of random's system information tool 1.10 (written by random/random)
Run by Kamil at 2017-09-27 20:37:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 30 GB (25%) free of 119 GB
Total RAM: 3949 MB (75% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {741BB73F-7CF0-4B15-97CE-8BC6F9443968}
"taskhost.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /cr
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource core
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Users\Kamil\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-49e8b453-fb7c-4df7-9735-16cdf53bab80 -SystemEventPortName:HostProcess-81c6c059-b106-40e6-8dfe-cd40da22502f -IoCancelEventPortName:HostProcess-9b243106-16fe-4ab1-8548-9cb767153351 -NonStateChangingEventPortName:HostProcess-b52a4471-2417-4953-88a3-38ff9e3d9941 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:09011f89-2dc5-467e-834f-554bc336cfbf -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
WDC.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default
prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "inboxcomtoolbar@inbox.com:1.2.0.0, siteranker@siteranker.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFF12.DLL
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\extensions\
inboxcomtoolbar@inbox.com
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\searchplugins\
inbox-hledn.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26 1429216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-29 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-02-11 1246600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-29 255088]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26 1429216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-08-25 3054136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS WebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2010-03-16 1754448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKMEDIA]
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2009-08-20 170624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKOSD2]
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2009-10-27 6998656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Boingo Wi-Fi]
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-08-25 2429]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
C:\Program Files\Elantech\ETDCtrl.exe [2009-09-30 621440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HControlUser]
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files (x86)\SiteRanker\SiteRankTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-12 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-08-25 39408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Syncables]
C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [2010-04-05 370480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray64.exe [2009-11-27 487424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateLBPShortCut]
C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-08-03 1080608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk]
C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-08-25 12862]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\311~1.599\SSSCHE~1.EXE [2017-08-21 545224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Kamil^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE [2009-02-26 97680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-09-26 22:19:33 ----D---- C:\AdwCleaner
2017-09-26 21:57:02 ----D---- C:\Users\Kamil\AppData\Roaming\TeamViewer
2017-09-26 21:56:31 ----D---- C:\Program Files (x86)\TeamViewer
2017-09-26 21:48:41 ----D---- C:\rsit
2017-09-26 21:48:41 ----D---- C:\Program Files\trend micro
2017-09-26 21:44:47 ----SHD---- C:\$RECYCLE.BIN
2017-09-26 21:38:58 ----A---- C:\Windows\SWREG.exe
2017-09-26 21:38:58 ----A---- C:\Windows\PEV.exe
2017-09-26 21:38:58 ----A---- C:\Windows\NIRCMD.exe
2017-09-26 21:38:58 ----A---- C:\Windows\MBR.exe
2017-09-26 21:38:57 ----A---- C:\Windows\zip.exe
2017-09-26 21:38:57 ----A---- C:\Windows\SWSC.exe
2017-09-26 21:38:57 ----A---- C:\Windows\sed.exe
2017-09-26 21:38:57 ----A---- C:\Windows\grep.exe
2017-09-26 21:38:10 ----SD---- C:\ComboFix
2017-09-26 21:37:51 ----D---- C:\Qoobox
2017-09-26 21:36:21 ----D---- C:\Windows\erdnt
2017-09-26 21:35:58 ----SD---- C:\32788R22FWJFW
2017-09-26 20:13:33 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2017-09-26 20:12:54 ----A---- C:\Windows\system32\drivers\mbae64.sys
2017-09-26 20:12:28 ----D---- C:\ProgramData\Malwarebytes
2017-09-26 20:12:28 ----D---- C:\Program Files\Malwarebytes
2017-09-25 10:10:59 ----D---- C:\Windows\pss
2017-09-21 09:52:00 ----D---- C:\Windows\Minidump
2017-09-20 21:34:15 ----D---- C:\ProgramData\ESET
2017-09-20 21:34:15 ----D---- C:\Program Files\ESET
2017-09-20 21:33:52 ----SHD---- C:\Config.Msi
2017-09-12 20:18:38 ----A---- C:\Windows\system32\mshtml.dll
2017-09-12 20:18:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-09-12 20:18:36 ----A---- C:\Windows\system32\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\system32\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-09-12 20:18:34 ----A---- C:\Windows\system32\wininet.dll
2017-09-12 20:18:33 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\win32k.sys
2017-09-12 20:18:33 ----A---- C:\Windows\system32\shell32.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\iertutil.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\urlmon.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmcndmgr.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmc.exe
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-09-12 20:18:29 ----A---- C:\Windows\system32\msfeeds.dll
2017-09-12 20:18:28 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\localspl.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmc.exe
2017-09-12 20:18:24 ----A---- C:\Windows\system32\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\usp10.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-09-12 20:18:22 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-09-12 20:18:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\ie4uinit.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\cic.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\nsisvc.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcshext.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcbase.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\drivers\nsiproxy.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\ntdll.dll
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-09-12 20:18:19 ----A---- C:\Windows\system32\webcheck.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\cic.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\shdocvw.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\dxtrans.dll
2017-09-12 20:18:17 ----A---- C:\Windows\system32\mshtmled.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\certcli.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\nsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\system32\iernonce.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\nsi.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\vbscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ole32.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-09-12 20:18:10 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\rpcrt4.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\drivers\srv.sys
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\smss.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\rpcss.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ntprint.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\lsasrv.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kernel32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kerberos.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ieapfltr.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\winsrv.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\schannel.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ncrypt.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\msv1_0.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\KernelBase.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\inetpp.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64win.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wdigest.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\TSpkg.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\sspicli.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\srcore.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\conhost.exe
2017-09-12 20:18:07 ----A---- C:\Windows\system32\bcrypt.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\rpchttp.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\inetppui.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-09-12 20:18:06 ----A---- C:\Windows\system32\csrsrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\sspisrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\secur32.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\lsass.exe
2017-09-12 20:18:05 ----A---- C:\Windows\system32\drivers\appid.sys
2017-09-12 20:18:05 ----A---- C:\Windows\system32\cryptbase.dll
2017-09-12 20:18:04 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-09-12 20:18:04 ----A---- C:\Windows\system32\wow64cpu.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\wpnpinst.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\rstrui.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidsvc.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidapi.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-09-12 20:18:02 ----A---- C:\Windows\system32\apisetschema.dll
2017-09-12 20:18:00 ----A---- C:\Windows\SYSWOW64\user.exe
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\adtschema.dll
2017-09-10 19:28:40 ----D---- C:\ProgramData\McAfee Security Scan
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcp120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
======List of files/folders modified in the last 1 month======
2017-09-27 20:38:18 ----D---- C:\Windows\Prefetch
2017-09-27 20:36:33 ----D---- C:\Windows\Temp
2017-09-27 20:36:19 ----A---- C:\Windows\SYSWOW64\log.txt
2017-09-27 12:46:17 ----SHD---- C:\Windows\Installer
2017-09-27 00:06:26 ----D---- C:\Windows\rescache
2017-09-26 23:19:12 ----D---- C:\Windows\System32
2017-09-26 23:19:11 ----D---- C:\Windows\inf
2017-09-26 23:19:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-09-26 23:16:58 ----D---- C:\Windows\system32\DriverStore
2017-09-26 23:16:57 ----D---- C:\Windows\system32\drivers
2017-09-26 23:12:37 ----A---- C:\Windows\ntbtlog.txt
2017-09-26 22:50:28 ----A---- C:\Windows\system32\ServiceFilter.ini
2017-09-26 22:48:37 ----RD---- C:\Program Files (x86)
2017-09-26 22:48:37 ----HD---- C:\ProgramData
2017-09-26 21:57:16 ----D---- C:\Windows\system32\Tasks
2017-09-26 21:57:07 ----RSD---- C:\Windows\Fonts
2017-09-26 21:52:48 ----D---- C:\Windows\system32\drivers\etc
2017-09-26 21:48:41 ----RD---- C:\Program Files
2017-09-26 21:38:58 ----D---- C:\Windows
2017-09-26 21:30:52 ----SHD---- C:\System Volume Information
2017-09-26 19:58:49 ----D---- C:\Windows\Microsoft.NET
2017-09-25 10:19:56 ----D---- C:\Windows\system32\NDF
2017-09-21 14:25:36 ----D---- C:\Windows\system32\config
2017-09-20 21:33:35 ----D---- C:\Windows\SysWOW64
2017-09-20 21:33:07 ----RSD---- C:\Windows\assembly
2017-09-13 10:37:57 ----D---- C:\ProgramData\Microsoft Help
2017-09-13 10:37:08 ----A---- C:\Windows\win.ini
2017-09-13 10:09:03 ----D---- C:\Windows\winsxs
2017-09-13 10:03:04 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 10:03:00 ----D---- C:\Program Files\Internet Explorer
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\bg-BG
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\sl-SI
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hr-HR
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lv-LV
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lt-LT
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\sk-SK
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\et-EE
2017-09-13 10:02:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\ro-RO
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\en-US
2017-09-13 10:02:42 ----D---- C:\Windows\system32\bg-BG
2017-09-13 10:02:41 ----D---- C:\Windows\system32\sl-SI
2017-09-13 10:02:41 ----D---- C:\Windows\system32\pl-PL
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hu-HU
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hr-HR
2017-09-13 10:02:40 ----D---- C:\Windows\system32\sr-Latn-CS
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lv-LV
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lt-LT
2017-09-13 10:02:39 ----D---- C:\Windows\system32\sk-SK
2017-09-13 10:02:39 ----D---- C:\Windows\system32\et-EE
2017-09-13 10:02:39 ----D---- C:\Windows\system32\cs-CZ
2017-09-13 10:02:38 ----D---- C:\Windows\system32\ro-RO
2017-09-13 10:02:38 ----D---- C:\Windows\system32\en-US
2017-09-13 10:02:33 ----D---- C:\Windows\AppPatch
2017-09-13 10:02:31 ----D---- C:\Windows\system32\Boot
2017-09-12 23:48:57 ----D---- C:\Windows\system32\catroot2
2017-09-12 23:46:15 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-09-10 19:28:55 ----D---- C:\Program Files\McAfee Security Scan
2017-09-01 17:29:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-09-01 15:43:26 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-08-06 408600]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2017-06-22 132824]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2017-05-04 178056]
R1 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2017-05-04 77224]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-11-11 6104576]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-01 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-11-13 67072]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2017-09-27 253888]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-12 1799680]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2009-11-27 505344]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-12-02 27136]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-12-02 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-12-02 9216]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-08 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-11-11 202752]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-11-10 96896]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-06-15 249648]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-08-03 864032]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-10-01 262144]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-07 6058960]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe [2009-11-27 243712]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-26 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-26 125064]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-04-18 996736]
S2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2017-04-18 16160]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-06 270016]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-07-07 195336]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-11 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-08-13 116224]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.599\McCHSvc.exe [2017-08-21 404368]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-09-01 175568]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-04-18 86776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
-----------------EOF-----------------
Run by Kamil at 2017-09-27 20:37:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 30 GB (25%) free of 119 GB
Total RAM: 3949 MB (75% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {741BB73F-7CF0-4B15-97CE-8BC6F9443968}
"taskhost.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /cr
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource core
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Users\Kamil\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-49e8b453-fb7c-4df7-9735-16cdf53bab80 -SystemEventPortName:HostProcess-81c6c059-b106-40e6-8dfe-cd40da22502f -IoCancelEventPortName:HostProcess-9b243106-16fe-4ab1-8548-9cb767153351 -NonStateChangingEventPortName:HostProcess-b52a4471-2417-4953-88a3-38ff9e3d9941 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:09011f89-2dc5-467e-834f-554bc336cfbf -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
WDC.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default
prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "inboxcomtoolbar@inbox.com:1.2.0.0, siteranker@siteranker.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFF12.DLL
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\extensions\
inboxcomtoolbar@inbox.com
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\searchplugins\
inbox-hledn.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26 1429216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-29 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-02-11 1246600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-29 255088]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26 1429216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-08-25 3054136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS WebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2010-03-16 1754448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKMEDIA]
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2009-08-20 170624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKOSD2]
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2009-10-27 6998656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Boingo Wi-Fi]
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-08-25 2429]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
C:\Program Files\Elantech\ETDCtrl.exe [2009-09-30 621440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HControlUser]
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files (x86)\SiteRanker\SiteRankTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-12 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-08-25 39408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Syncables]
C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [2010-04-05 370480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray64.exe [2009-11-27 487424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateLBPShortCut]
C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-08-03 1080608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk]
C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-08-25 12862]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\311~1.599\SSSCHE~1.EXE [2017-08-21 545224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Kamil^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE [2009-02-26 97680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-09-26 22:19:33 ----D---- C:\AdwCleaner
2017-09-26 21:57:02 ----D---- C:\Users\Kamil\AppData\Roaming\TeamViewer
2017-09-26 21:56:31 ----D---- C:\Program Files (x86)\TeamViewer
2017-09-26 21:48:41 ----D---- C:\rsit
2017-09-26 21:48:41 ----D---- C:\Program Files\trend micro
2017-09-26 21:44:47 ----SHD---- C:\$RECYCLE.BIN
2017-09-26 21:38:58 ----A---- C:\Windows\SWREG.exe
2017-09-26 21:38:58 ----A---- C:\Windows\PEV.exe
2017-09-26 21:38:58 ----A---- C:\Windows\NIRCMD.exe
2017-09-26 21:38:58 ----A---- C:\Windows\MBR.exe
2017-09-26 21:38:57 ----A---- C:\Windows\zip.exe
2017-09-26 21:38:57 ----A---- C:\Windows\SWSC.exe
2017-09-26 21:38:57 ----A---- C:\Windows\sed.exe
2017-09-26 21:38:57 ----A---- C:\Windows\grep.exe
2017-09-26 21:38:10 ----SD---- C:\ComboFix
2017-09-26 21:37:51 ----D---- C:\Qoobox
2017-09-26 21:36:21 ----D---- C:\Windows\erdnt
2017-09-26 21:35:58 ----SD---- C:\32788R22FWJFW
2017-09-26 20:13:33 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2017-09-26 20:12:54 ----A---- C:\Windows\system32\drivers\mbae64.sys
2017-09-26 20:12:28 ----D---- C:\ProgramData\Malwarebytes
2017-09-26 20:12:28 ----D---- C:\Program Files\Malwarebytes
2017-09-25 10:10:59 ----D---- C:\Windows\pss
2017-09-21 09:52:00 ----D---- C:\Windows\Minidump
2017-09-20 21:34:15 ----D---- C:\ProgramData\ESET
2017-09-20 21:34:15 ----D---- C:\Program Files\ESET
2017-09-20 21:33:52 ----SHD---- C:\Config.Msi
2017-09-12 20:18:38 ----A---- C:\Windows\system32\mshtml.dll
2017-09-12 20:18:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-09-12 20:18:36 ----A---- C:\Windows\system32\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\system32\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-09-12 20:18:34 ----A---- C:\Windows\system32\wininet.dll
2017-09-12 20:18:33 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\win32k.sys
2017-09-12 20:18:33 ----A---- C:\Windows\system32\shell32.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\iertutil.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\urlmon.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmcndmgr.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmc.exe
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-09-12 20:18:29 ----A---- C:\Windows\system32\msfeeds.dll
2017-09-12 20:18:28 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\localspl.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmc.exe
2017-09-12 20:18:24 ----A---- C:\Windows\system32\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\usp10.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-09-12 20:18:22 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-09-12 20:18:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\ie4uinit.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\cic.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\nsisvc.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcshext.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcbase.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\drivers\nsiproxy.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\ntdll.dll
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-09-12 20:18:19 ----A---- C:\Windows\system32\webcheck.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\cic.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\shdocvw.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\dxtrans.dll
2017-09-12 20:18:17 ----A---- C:\Windows\system32\mshtmled.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\certcli.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\nsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\system32\iernonce.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\nsi.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\vbscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ole32.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-09-12 20:18:10 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\rpcrt4.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\drivers\srv.sys
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\smss.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\rpcss.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ntprint.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\lsasrv.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kernel32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kerberos.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ieapfltr.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\winsrv.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\schannel.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ncrypt.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\msv1_0.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\KernelBase.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\inetpp.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64win.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wdigest.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\TSpkg.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\sspicli.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\srcore.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\conhost.exe
2017-09-12 20:18:07 ----A---- C:\Windows\system32\bcrypt.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\rpchttp.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\inetppui.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-09-12 20:18:06 ----A---- C:\Windows\system32\csrsrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\sspisrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\secur32.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\lsass.exe
2017-09-12 20:18:05 ----A---- C:\Windows\system32\drivers\appid.sys
2017-09-12 20:18:05 ----A---- C:\Windows\system32\cryptbase.dll
2017-09-12 20:18:04 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-09-12 20:18:04 ----A---- C:\Windows\system32\wow64cpu.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\wpnpinst.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\rstrui.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidsvc.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidapi.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-09-12 20:18:02 ----A---- C:\Windows\system32\apisetschema.dll
2017-09-12 20:18:00 ----A---- C:\Windows\SYSWOW64\user.exe
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\adtschema.dll
2017-09-10 19:28:40 ----D---- C:\ProgramData\McAfee Security Scan
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcp120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
======List of files/folders modified in the last 1 month======
2017-09-27 20:38:18 ----D---- C:\Windows\Prefetch
2017-09-27 20:36:33 ----D---- C:\Windows\Temp
2017-09-27 20:36:19 ----A---- C:\Windows\SYSWOW64\log.txt
2017-09-27 12:46:17 ----SHD---- C:\Windows\Installer
2017-09-27 00:06:26 ----D---- C:\Windows\rescache
2017-09-26 23:19:12 ----D---- C:\Windows\System32
2017-09-26 23:19:11 ----D---- C:\Windows\inf
2017-09-26 23:19:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-09-26 23:16:58 ----D---- C:\Windows\system32\DriverStore
2017-09-26 23:16:57 ----D---- C:\Windows\system32\drivers
2017-09-26 23:12:37 ----A---- C:\Windows\ntbtlog.txt
2017-09-26 22:50:28 ----A---- C:\Windows\system32\ServiceFilter.ini
2017-09-26 22:48:37 ----RD---- C:\Program Files (x86)
2017-09-26 22:48:37 ----HD---- C:\ProgramData
2017-09-26 21:57:16 ----D---- C:\Windows\system32\Tasks
2017-09-26 21:57:07 ----RSD---- C:\Windows\Fonts
2017-09-26 21:52:48 ----D---- C:\Windows\system32\drivers\etc
2017-09-26 21:48:41 ----RD---- C:\Program Files
2017-09-26 21:38:58 ----D---- C:\Windows
2017-09-26 21:30:52 ----SHD---- C:\System Volume Information
2017-09-26 19:58:49 ----D---- C:\Windows\Microsoft.NET
2017-09-25 10:19:56 ----D---- C:\Windows\system32\NDF
2017-09-21 14:25:36 ----D---- C:\Windows\system32\config
2017-09-20 21:33:35 ----D---- C:\Windows\SysWOW64
2017-09-20 21:33:07 ----RSD---- C:\Windows\assembly
2017-09-13 10:37:57 ----D---- C:\ProgramData\Microsoft Help
2017-09-13 10:37:08 ----A---- C:\Windows\win.ini
2017-09-13 10:09:03 ----D---- C:\Windows\winsxs
2017-09-13 10:03:04 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 10:03:00 ----D---- C:\Program Files\Internet Explorer
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\bg-BG
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\sl-SI
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hr-HR
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lv-LV
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lt-LT
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\sk-SK
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\et-EE
2017-09-13 10:02:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\ro-RO
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\en-US
2017-09-13 10:02:42 ----D---- C:\Windows\system32\bg-BG
2017-09-13 10:02:41 ----D---- C:\Windows\system32\sl-SI
2017-09-13 10:02:41 ----D---- C:\Windows\system32\pl-PL
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hu-HU
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hr-HR
2017-09-13 10:02:40 ----D---- C:\Windows\system32\sr-Latn-CS
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lv-LV
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lt-LT
2017-09-13 10:02:39 ----D---- C:\Windows\system32\sk-SK
2017-09-13 10:02:39 ----D---- C:\Windows\system32\et-EE
2017-09-13 10:02:39 ----D---- C:\Windows\system32\cs-CZ
2017-09-13 10:02:38 ----D---- C:\Windows\system32\ro-RO
2017-09-13 10:02:38 ----D---- C:\Windows\system32\en-US
2017-09-13 10:02:33 ----D---- C:\Windows\AppPatch
2017-09-13 10:02:31 ----D---- C:\Windows\system32\Boot
2017-09-12 23:48:57 ----D---- C:\Windows\system32\catroot2
2017-09-12 23:46:15 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-09-10 19:28:55 ----D---- C:\Program Files\McAfee Security Scan
2017-09-01 17:29:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-09-01 15:43:26 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-08-06 408600]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2017-06-22 132824]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2017-05-04 178056]
R1 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2017-05-04 77224]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-11-11 6104576]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-01 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-11-13 67072]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2017-09-27 253888]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-12 1799680]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2009-11-27 505344]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-12-02 27136]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-12-02 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-12-02 9216]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-08 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-11-11 202752]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-11-10 96896]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-06-15 249648]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-08-03 864032]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-10-01 262144]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-07 6058960]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe [2009-11-27 243712]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-26 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-26 125064]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-04-18 996736]
S2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2017-04-18 16160]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-06 270016]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-07-07 195336]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-11 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-08-13 116224]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.599\McCHSvc.exe [2017-08-21 404368]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-09-01 175568]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-04-18 86776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc win 7 využito 100% RAM
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Program Files (x86)\Microsoft\BingBar
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Program Files (x86)\Google\Google Toolbar
C:\Program Files (x86)\Skype\Toolbars
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]/64
:services
BBUpdate
BBSvc
McComponentHostService
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc win 7 využito 100% RAM
Logfile of random's system information tool 1.10 (written by random/random)
Run by Kamil at 2017-09-27 21:31:16
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (36%) free of 119 GB
Total RAM: 3949 MB (79% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
atieclxx
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\Explorer.EXE
taskeng.exe {B3DCB3C3-1E1C-4C5C-9809-2AC1DF7CA35F}
"taskhost.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Users\Kamil\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
ATKOSD.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
WDC.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-98dd157a-b740-4e70-bbeb-d190138930ce -SystemEventPortName:HostProcess-55d63a12-00aa-4c8b-9dfd-091406fb3c1b -IoCancelEventPortName:HostProcess-48a932b2-fd8c-439f-9cb0-e5ddd4931036 -NonStateChangingEventPortName:HostProcess-4fc07adb-6897-433b-ae30-0d3d52945365 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:749ccfd4-2432-43d8-9317-f0cc1aa47869 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default
prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "inboxcomtoolbar@inbox.com:1.2.0.0, siteranker@siteranker.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFF12.DLL
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\extensions\
inboxcomtoolbar@inbox.com
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\searchplugins\
inbox-hledn.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26 1429216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-08-25 3054136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS WebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2010-03-16 1754448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKMEDIA]
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2009-08-20 170624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKOSD2]
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2009-10-27 6998656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Boingo Wi-Fi]
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-08-25 2429]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
C:\Program Files\Elantech\ETDCtrl.exe [2009-09-30 621440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HControlUser]
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files (x86)\SiteRanker\SiteRankTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-12 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Syncables]
C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [2010-04-05 370480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray64.exe [2009-11-27 487424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateLBPShortCut]
C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-08-03 1080608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk]
C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-08-25 12862]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Kamil^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE [2009-02-26 97680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-09-27 21:12:41 ----D---- C:\_OTM
2017-09-26 22:19:33 ----D---- C:\AdwCleaner
2017-09-26 21:57:02 ----D---- C:\Users\Kamil\AppData\Roaming\TeamViewer
2017-09-26 21:56:31 ----D---- C:\Program Files (x86)\TeamViewer
2017-09-26 21:48:41 ----D---- C:\rsit
2017-09-26 21:48:41 ----D---- C:\Program Files\trend micro
2017-09-26 21:44:47 ----SHD---- C:\$RECYCLE.BIN
2017-09-26 21:38:58 ----A---- C:\Windows\SWREG.exe
2017-09-26 21:38:58 ----A---- C:\Windows\PEV.exe
2017-09-26 21:38:58 ----A---- C:\Windows\NIRCMD.exe
2017-09-26 21:38:58 ----A---- C:\Windows\MBR.exe
2017-09-26 21:38:57 ----A---- C:\Windows\zip.exe
2017-09-26 21:38:57 ----A---- C:\Windows\SWSC.exe
2017-09-26 21:38:57 ----A---- C:\Windows\sed.exe
2017-09-26 21:38:57 ----A---- C:\Windows\grep.exe
2017-09-26 21:38:10 ----SD---- C:\ComboFix
2017-09-26 21:37:51 ----D---- C:\Qoobox
2017-09-26 21:36:21 ----D---- C:\Windows\erdnt
2017-09-26 21:35:58 ----SD---- C:\32788R22FWJFW
2017-09-26 20:13:33 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2017-09-26 20:12:54 ----A---- C:\Windows\system32\drivers\mbae64.sys
2017-09-26 20:12:28 ----D---- C:\ProgramData\Malwarebytes
2017-09-26 20:12:28 ----D---- C:\Program Files\Malwarebytes
2017-09-25 10:10:59 ----D---- C:\Windows\pss
2017-09-21 09:52:00 ----D---- C:\Windows\Minidump
2017-09-20 21:34:15 ----D---- C:\ProgramData\ESET
2017-09-20 21:34:15 ----D---- C:\Program Files\ESET
2017-09-20 21:33:52 ----SHD---- C:\Config.Msi
2017-09-12 20:18:38 ----A---- C:\Windows\system32\mshtml.dll
2017-09-12 20:18:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-09-12 20:18:36 ----A---- C:\Windows\system32\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\system32\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-09-12 20:18:34 ----A---- C:\Windows\system32\wininet.dll
2017-09-12 20:18:33 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\win32k.sys
2017-09-12 20:18:33 ----A---- C:\Windows\system32\shell32.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\iertutil.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\urlmon.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmcndmgr.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmc.exe
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-09-12 20:18:29 ----A---- C:\Windows\system32\msfeeds.dll
2017-09-12 20:18:28 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\localspl.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmc.exe
2017-09-12 20:18:24 ----A---- C:\Windows\system32\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\usp10.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-09-12 20:18:22 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-09-12 20:18:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\ie4uinit.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\cic.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\nsisvc.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcshext.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcbase.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\drivers\nsiproxy.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\ntdll.dll
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-09-12 20:18:19 ----A---- C:\Windows\system32\webcheck.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\cic.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\shdocvw.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\dxtrans.dll
2017-09-12 20:18:17 ----A---- C:\Windows\system32\mshtmled.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\certcli.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\nsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\system32\iernonce.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\nsi.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\vbscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ole32.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-09-12 20:18:10 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\rpcrt4.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\drivers\srv.sys
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\smss.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\rpcss.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ntprint.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\lsasrv.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kernel32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kerberos.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ieapfltr.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\winsrv.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\schannel.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ncrypt.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\msv1_0.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\KernelBase.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\inetpp.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64win.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wdigest.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\TSpkg.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\sspicli.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\srcore.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\conhost.exe
2017-09-12 20:18:07 ----A---- C:\Windows\system32\bcrypt.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\rpchttp.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\inetppui.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-09-12 20:18:06 ----A---- C:\Windows\system32\csrsrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\sspisrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\secur32.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\lsass.exe
2017-09-12 20:18:05 ----A---- C:\Windows\system32\drivers\appid.sys
2017-09-12 20:18:05 ----A---- C:\Windows\system32\cryptbase.dll
2017-09-12 20:18:04 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-09-12 20:18:04 ----A---- C:\Windows\system32\wow64cpu.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\wpnpinst.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\rstrui.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidsvc.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidapi.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-09-12 20:18:02 ----A---- C:\Windows\system32\apisetschema.dll
2017-09-12 20:18:00 ----A---- C:\Windows\SYSWOW64\user.exe
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\adtschema.dll
2017-09-10 19:28:40 ----D---- C:\ProgramData\McAfee Security Scan
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcp120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
======List of files/folders modified in the last 1 month======
2017-09-27 21:30:42 ----A---- C:\Windows\SYSWOW64\log.txt
2017-09-27 21:29:47 ----D---- C:\Windows\Prefetch
2017-09-27 21:29:40 ----D---- C:\Windows\system32\config
2017-09-27 21:29:37 ----D---- C:\Windows\Temp
2017-09-27 21:15:24 ----D---- C:\Windows\System32
2017-09-27 21:15:24 ----D---- C:\Windows\inf
2017-09-27 21:15:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-09-27 21:13:24 ----RD---- C:\Program Files (x86)\Skype
2017-09-27 21:13:24 ----D---- C:\Windows\Tasks
2017-09-27 21:13:24 ----D---- C:\Program Files (x86)\Google
2017-09-27 21:13:18 ----D---- C:\Program Files (x86)\Microsoft
2017-09-27 12:46:17 ----SHD---- C:\Windows\Installer
2017-09-27 00:06:26 ----D---- C:\Windows\rescache
2017-09-26 23:16:58 ----D---- C:\Windows\system32\DriverStore
2017-09-26 23:16:57 ----D---- C:\Windows\system32\drivers
2017-09-26 23:12:37 ----A---- C:\Windows\ntbtlog.txt
2017-09-26 22:50:28 ----A---- C:\Windows\system32\ServiceFilter.ini
2017-09-26 22:48:37 ----RD---- C:\Program Files (x86)
2017-09-26 22:48:37 ----HD---- C:\ProgramData
2017-09-26 21:57:16 ----D---- C:\Windows\system32\Tasks
2017-09-26 21:57:07 ----RSD---- C:\Windows\Fonts
2017-09-26 21:52:48 ----D---- C:\Windows\system32\drivers\etc
2017-09-26 21:48:41 ----RD---- C:\Program Files
2017-09-26 21:38:58 ----D---- C:\Windows
2017-09-26 21:30:52 ----SHD---- C:\System Volume Information
2017-09-26 19:58:49 ----D---- C:\Windows\Microsoft.NET
2017-09-25 10:19:56 ----D---- C:\Windows\system32\NDF
2017-09-20 21:33:35 ----D---- C:\Windows\SysWOW64
2017-09-20 21:33:07 ----RSD---- C:\Windows\assembly
2017-09-13 10:37:57 ----D---- C:\ProgramData\Microsoft Help
2017-09-13 10:37:08 ----A---- C:\Windows\win.ini
2017-09-13 10:09:03 ----D---- C:\Windows\winsxs
2017-09-13 10:03:04 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 10:03:00 ----D---- C:\Program Files\Internet Explorer
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\bg-BG
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\sl-SI
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hr-HR
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lv-LV
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lt-LT
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\sk-SK
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\et-EE
2017-09-13 10:02:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\ro-RO
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\en-US
2017-09-13 10:02:42 ----D---- C:\Windows\system32\bg-BG
2017-09-13 10:02:41 ----D---- C:\Windows\system32\sl-SI
2017-09-13 10:02:41 ----D---- C:\Windows\system32\pl-PL
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hu-HU
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hr-HR
2017-09-13 10:02:40 ----D---- C:\Windows\system32\sr-Latn-CS
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lv-LV
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lt-LT
2017-09-13 10:02:39 ----D---- C:\Windows\system32\sk-SK
2017-09-13 10:02:39 ----D---- C:\Windows\system32\et-EE
2017-09-13 10:02:39 ----D---- C:\Windows\system32\cs-CZ
2017-09-13 10:02:38 ----D---- C:\Windows\system32\ro-RO
2017-09-13 10:02:38 ----D---- C:\Windows\system32\en-US
2017-09-13 10:02:33 ----D---- C:\Windows\AppPatch
2017-09-13 10:02:31 ----D---- C:\Windows\system32\Boot
2017-09-12 23:48:57 ----D---- C:\Windows\system32\catroot2
2017-09-12 23:46:15 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-09-10 19:28:55 ----D---- C:\Program Files\McAfee Security Scan
2017-09-01 17:29:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-09-01 15:43:26 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-08-06 408600]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2017-06-22 132824]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2017-05-04 178056]
R1 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2017-05-04 77224]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-11-11 6104576]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-01 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-11-13 67072]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2017-09-27 253888]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-12 1799680]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2009-11-27 505344]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-12-02 27136]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-12-02 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-12-02 9216]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-08 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-11-11 202752]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-11-10 96896]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-08-03 864032]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-10-01 262144]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-07 6058960]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe [2009-11-27 243712]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-26 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-26 125064]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 []
S2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-04-18 996736]
S2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2017-04-18 16160]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-06 270016]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-11 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-08-13 116224]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-09-01 175568]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-04-18 86776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
-----------------EOF-----------------
Run by Kamil at 2017-09-27 21:31:16
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (36%) free of 119 GB
Total RAM: 3949 MB (79% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
atieclxx
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -switch-3be2f036c43042cdb03588591c9325c3
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\Explorer.EXE
taskeng.exe {B3DCB3C3-1E1C-4C5C-9809-2AC1DF7CA35F}
"taskhost.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Users\Kamil\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
ATKOSD.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
WDC.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-98dd157a-b740-4e70-bbeb-d190138930ce -SystemEventPortName:HostProcess-55d63a12-00aa-4c8b-9dfd-091406fb3c1b -IoCancelEventPortName:HostProcess-48a932b2-fd8c-439f-9cb0-e5ddd4931036 -NonStateChangingEventPortName:HostProcess-4fc07adb-6897-433b-ae30-0d3d52945365 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:749ccfd4-2432-43d8-9317-f0cc1aa47869 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default
prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "inboxcomtoolbar@inbox.com:1.2.0.0, siteranker@siteranker.com:1.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFF12.DLL
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\extensions\
inboxcomtoolbar@inbox.com
C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\491kwjq3.default\searchplugins\
inbox-hledn.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26 1429216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26 1056992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AmIcoSinglun64]
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-01 323584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-08-25 3054136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS WebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2010-03-16 1754448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKMEDIA]
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2009-08-20 170624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKOSD2]
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2009-10-27 6998656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Boingo Wi-Fi]
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2010-08-25 2429]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
C:\Program Files\Elantech\ETDCtrl.exe [2009-09-30 621440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HControlUser]
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files (x86)\SiteRanker\SiteRankTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-12 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Syncables]
C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [2010-04-05 370480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray64.exe [2009-11-27 487424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateLBPShortCut]
C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-08-03 1080608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk]
C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-08-25 12862]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Kamil^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~1\Office12\ONENOTEM.EXE [2009-02-26 97680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-09-27 21:12:41 ----D---- C:\_OTM
2017-09-26 22:19:33 ----D---- C:\AdwCleaner
2017-09-26 21:57:02 ----D---- C:\Users\Kamil\AppData\Roaming\TeamViewer
2017-09-26 21:56:31 ----D---- C:\Program Files (x86)\TeamViewer
2017-09-26 21:48:41 ----D---- C:\rsit
2017-09-26 21:48:41 ----D---- C:\Program Files\trend micro
2017-09-26 21:44:47 ----SHD---- C:\$RECYCLE.BIN
2017-09-26 21:38:58 ----A---- C:\Windows\SWREG.exe
2017-09-26 21:38:58 ----A---- C:\Windows\PEV.exe
2017-09-26 21:38:58 ----A---- C:\Windows\NIRCMD.exe
2017-09-26 21:38:58 ----A---- C:\Windows\MBR.exe
2017-09-26 21:38:57 ----A---- C:\Windows\zip.exe
2017-09-26 21:38:57 ----A---- C:\Windows\SWSC.exe
2017-09-26 21:38:57 ----A---- C:\Windows\sed.exe
2017-09-26 21:38:57 ----A---- C:\Windows\grep.exe
2017-09-26 21:38:10 ----SD---- C:\ComboFix
2017-09-26 21:37:51 ----D---- C:\Qoobox
2017-09-26 21:36:21 ----D---- C:\Windows\erdnt
2017-09-26 21:35:58 ----SD---- C:\32788R22FWJFW
2017-09-26 20:13:33 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2017-09-26 20:12:54 ----A---- C:\Windows\system32\drivers\mbae64.sys
2017-09-26 20:12:28 ----D---- C:\ProgramData\Malwarebytes
2017-09-26 20:12:28 ----D---- C:\Program Files\Malwarebytes
2017-09-25 10:10:59 ----D---- C:\Windows\pss
2017-09-21 09:52:00 ----D---- C:\Windows\Minidump
2017-09-20 21:34:15 ----D---- C:\ProgramData\ESET
2017-09-20 21:34:15 ----D---- C:\Program Files\ESET
2017-09-20 21:33:52 ----SHD---- C:\Config.Msi
2017-09-12 20:18:38 ----A---- C:\Windows\system32\mshtml.dll
2017-09-12 20:18:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-09-12 20:18:36 ----A---- C:\Windows\system32\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-09-12 20:18:35 ----A---- C:\Windows\system32\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-09-12 20:18:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-09-12 20:18:34 ----A---- C:\Windows\system32\wininet.dll
2017-09-12 20:18:33 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\win32k.sys
2017-09-12 20:18:33 ----A---- C:\Windows\system32\shell32.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\iertutil.dll
2017-09-12 20:18:33 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\urlmon.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmcndmgr.dll
2017-09-12 20:18:32 ----A---- C:\Windows\system32\mmc.exe
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-09-12 20:18:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-09-12 20:18:29 ----A---- C:\Windows\system32\msfeeds.dll
2017-09-12 20:18:28 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-09-12 20:18:25 ----A---- C:\Windows\system32\localspl.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2017-09-12 20:18:24 ----A---- C:\Windows\SYSWOW64\mmc.exe
2017-09-12 20:18:24 ----A---- C:\Windows\system32\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-09-12 20:18:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\Wldap32.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\usp10.dll
2017-09-12 20:18:23 ----A---- C:\Windows\system32\iedkcs32.dll
2017-09-12 20:18:22 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-09-12 20:18:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\ie4uinit.exe
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\drivers\netbt.sys
2017-09-12 20:18:22 ----A---- C:\Windows\system32\cic.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-09-12 20:18:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\ntprint.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\nsisvc.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcshext.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\mmcbase.dll
2017-09-12 20:18:21 ----A---- C:\Windows\system32\drivers\nsiproxy.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\ntdll.dll
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-09-12 20:18:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-09-12 20:18:19 ----A---- C:\Windows\system32\webcheck.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcshext.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\mmcbase.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-09-12 20:18:18 ----A---- C:\Windows\SYSWOW64\cic.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\shdocvw.dll
2017-09-12 20:18:18 ----A---- C:\Windows\system32\dxtrans.dll
2017-09-12 20:18:17 ----A---- C:\Windows\system32\mshtmled.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\msrating.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\dxtmsft.dll
2017-09-12 20:18:15 ----A---- C:\Windows\system32\certcli.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\winnsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\nsi.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\ieui.dll
2017-09-12 20:18:14 ----A---- C:\Windows\system32\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-09-12 20:18:13 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\occache.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\jscript9diag.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\inseng.dll
2017-09-12 20:18:13 ----A---- C:\Windows\system32\ieUnatt.exe
2017-09-12 20:18:13 ----A---- C:\Windows\system32\iernonce.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\nsi.dll
2017-09-12 20:18:12 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\vbscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ole32.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jsproxy.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\jscript.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-09-12 20:18:11 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-09-12 20:18:10 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\rpcrt4.dll
2017-09-12 20:18:10 ----A---- C:\Windows\system32\drivers\srv.sys
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-09-12 20:18:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\smss.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\rpcss.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ntprint.exe
2017-09-12 20:18:09 ----A---- C:\Windows\system32\lsasrv.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kernel32.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\kerberos.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\ieapfltr.dll
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-09-12 20:18:09 ----A---- C:\Windows\system32\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-09-12 20:18:08 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\winsrv.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\schannel.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\netbtugc.exe
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ncrypt.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\msv1_0.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\KernelBase.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\inetpp.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-09-12 20:18:08 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-09-12 20:18:07 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64win.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wow64.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\wdigest.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\TSpkg.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\sspicli.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\srcore.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-09-12 20:18:07 ----A---- C:\Windows\system32\conhost.exe
2017-09-12 20:18:07 ----A---- C:\Windows\system32\bcrypt.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-09-12 20:18:06 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\rpchttp.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\inetppui.dll
2017-09-12 20:18:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-09-12 20:18:06 ----A---- C:\Windows\system32\csrsrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-09-12 20:18:05 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\sspisrv.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\secur32.dll
2017-09-12 20:18:05 ----A---- C:\Windows\system32\lsass.exe
2017-09-12 20:18:05 ----A---- C:\Windows\system32\drivers\appid.sys
2017-09-12 20:18:05 ----A---- C:\Windows\system32\cryptbase.dll
2017-09-12 20:18:04 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-09-12 20:18:04 ----A---- C:\Windows\system32\wow64cpu.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-12 20:18:03 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\wpnpinst.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\srclient.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\rstrui.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\ntvdm64.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\credssp.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\comcat.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\auditpol.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidsvc.dll
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-09-12 20:18:03 ----A---- C:\Windows\system32\appidapi.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-12 20:18:02 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-09-12 20:18:02 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-09-12 20:18:02 ----A---- C:\Windows\system32\apisetschema.dll
2017-09-12 20:18:00 ----A---- C:\Windows\SYSWOW64\user.exe
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\oleres.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msobjs.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\msaudite.dll
2017-09-12 20:17:59 ----A---- C:\Windows\system32\adtschema.dll
2017-09-10 19:28:40 ----D---- C:\ProgramData\McAfee Security Scan
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\SYSWOW64\msvcp120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2017-08-30 13:23:08 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
======List of files/folders modified in the last 1 month======
2017-09-27 21:30:42 ----A---- C:\Windows\SYSWOW64\log.txt
2017-09-27 21:29:47 ----D---- C:\Windows\Prefetch
2017-09-27 21:29:40 ----D---- C:\Windows\system32\config
2017-09-27 21:29:37 ----D---- C:\Windows\Temp
2017-09-27 21:15:24 ----D---- C:\Windows\System32
2017-09-27 21:15:24 ----D---- C:\Windows\inf
2017-09-27 21:15:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-09-27 21:13:24 ----RD---- C:\Program Files (x86)\Skype
2017-09-27 21:13:24 ----D---- C:\Windows\Tasks
2017-09-27 21:13:24 ----D---- C:\Program Files (x86)\Google
2017-09-27 21:13:18 ----D---- C:\Program Files (x86)\Microsoft
2017-09-27 12:46:17 ----SHD---- C:\Windows\Installer
2017-09-27 00:06:26 ----D---- C:\Windows\rescache
2017-09-26 23:16:58 ----D---- C:\Windows\system32\DriverStore
2017-09-26 23:16:57 ----D---- C:\Windows\system32\drivers
2017-09-26 23:12:37 ----A---- C:\Windows\ntbtlog.txt
2017-09-26 22:50:28 ----A---- C:\Windows\system32\ServiceFilter.ini
2017-09-26 22:48:37 ----RD---- C:\Program Files (x86)
2017-09-26 22:48:37 ----HD---- C:\ProgramData
2017-09-26 21:57:16 ----D---- C:\Windows\system32\Tasks
2017-09-26 21:57:07 ----RSD---- C:\Windows\Fonts
2017-09-26 21:52:48 ----D---- C:\Windows\system32\drivers\etc
2017-09-26 21:48:41 ----RD---- C:\Program Files
2017-09-26 21:38:58 ----D---- C:\Windows
2017-09-26 21:30:52 ----SHD---- C:\System Volume Information
2017-09-26 19:58:49 ----D---- C:\Windows\Microsoft.NET
2017-09-25 10:19:56 ----D---- C:\Windows\system32\NDF
2017-09-20 21:33:35 ----D---- C:\Windows\SysWOW64
2017-09-20 21:33:07 ----RSD---- C:\Windows\assembly
2017-09-13 10:37:57 ----D---- C:\ProgramData\Microsoft Help
2017-09-13 10:37:08 ----A---- C:\Windows\win.ini
2017-09-13 10:09:03 ----D---- C:\Windows\winsxs
2017-09-13 10:03:04 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 10:03:00 ----D---- C:\Program Files\Internet Explorer
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\pl-PL
2017-09-13 10:02:57 ----D---- C:\Windows\SYSWOW64\bg-BG
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\sl-SI
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hu-HU
2017-09-13 10:02:56 ----D---- C:\Windows\SYSWOW64\hr-HR
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lv-LV
2017-09-13 10:02:55 ----D---- C:\Windows\SYSWOW64\lt-LT
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\sk-SK
2017-09-13 10:02:53 ----D---- C:\Windows\SYSWOW64\et-EE
2017-09-13 10:02:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\ro-RO
2017-09-13 10:02:50 ----D---- C:\Windows\SYSWOW64\en-US
2017-09-13 10:02:42 ----D---- C:\Windows\system32\bg-BG
2017-09-13 10:02:41 ----D---- C:\Windows\system32\sl-SI
2017-09-13 10:02:41 ----D---- C:\Windows\system32\pl-PL
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hu-HU
2017-09-13 10:02:41 ----D---- C:\Windows\system32\hr-HR
2017-09-13 10:02:40 ----D---- C:\Windows\system32\sr-Latn-CS
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lv-LV
2017-09-13 10:02:40 ----D---- C:\Windows\system32\lt-LT
2017-09-13 10:02:39 ----D---- C:\Windows\system32\sk-SK
2017-09-13 10:02:39 ----D---- C:\Windows\system32\et-EE
2017-09-13 10:02:39 ----D---- C:\Windows\system32\cs-CZ
2017-09-13 10:02:38 ----D---- C:\Windows\system32\ro-RO
2017-09-13 10:02:38 ----D---- C:\Windows\system32\en-US
2017-09-13 10:02:33 ----D---- C:\Windows\AppPatch
2017-09-13 10:02:31 ----D---- C:\Windows\system32\Boot
2017-09-12 23:48:57 ----D---- C:\Windows\system32\catroot2
2017-09-12 23:46:15 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-09-10 19:28:55 ----D---- C:\Program Files\McAfee Security Scan
2017-09-01 17:29:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-09-01 15:43:26 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-08-06 408600]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2017-06-22 132824]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2017-05-04 178056]
R1 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2017-05-04 77224]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-11-11 6104576]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-01 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-10-15 117760]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-11-13 67072]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2017-09-27 253888]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-12 1799680]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2009-11-27 505344]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-12-02 27136]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-12-02 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-12-02 9216]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-08 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-11-11 202752]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-11-10 96896]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-08-03 864032]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-10-01 262144]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-08-07 6058960]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe [2009-11-27 243712]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-26 105096]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-26 125064]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 []
S2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-04-18 996736]
S2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2017-04-18 16160]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-06 270016]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-11 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-08-13 116224]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-09-01 175568]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-04-18 86776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-05 1255736]
S4 NetMsmqActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetPipeActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
S4 NetTcpActivator;@%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2014-07-11 117392]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc win 7 využito 100% RAM
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc win 7 využito 100% RAM
vypadá to dobře 
ještě zkusím otestovat
ještě zkusím otestovatRe: prosim o pomoc win 7 využito 100% RAM
díky šlape to skvěle
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc win 7 využito 100% RAM
To jsem rád. Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?