Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

sync madnet ru - prosim o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

sync madnet ru - prosim o kontrolu logu

#1 Příspěvek od petob »

Zdravim. Pouzivam eset a od istej doby mi zvykne oznamovat toto. Ak sa nezobrazuje uploadnuty obrazok tak je to prynt screen toho co mi oznamuje eset a sice Sifrovana sietovana komunikacia nedovyryhodny certifikat - aplikacia na tomto pocitaci google chrome sa pokusa o komunikaciu nedovyryhodneho certifikatu - nie je mozne zarucit ze kontaktovany server sync madnet ru je ten za ktory sa vydava, moze ist o pokus o podvod alebo zachytenie komunikacie.
Obrázek

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peťo at 2018-04-21 19:47:03
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 770 GB (82%) free of 941 GB
Total RAM: 4024 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:47:17, on 21. 4. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18978)
Boot mode: Normal

Running processes:
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
C:\Program Files\trend micro\Peťo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMDTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=CMDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMDTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: HP Trust Circles Service (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13769 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
winlogon.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Security\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\igfxCUIService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPSP
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d7cc6792-fe90-40a6-b3cc-9e27693f6695 -SystemEventPortName:HostProcess-60c44360-810c-43e1-967b-8ae67857662d -IoCancelEventPortName:HostProcess-b9dc11e0-c99c-4e07-b348-87ee6ccf9a84 -NonStateChangingEventPortName:HostProcess-fb8d5a47-af28-4592-a85e-c40bf5797243 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:173bd3c3-7de8-41fd-b762-1dc5b046b769 -DeviceGroupId:WpdFsGroup
"taskhost.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\windows\Explorer.EXE
igfxEM.exe
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
HydraDM64.exe -h:131390 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan-4500 C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=66.0.3359.117 --initial-client-data=0x84,0x88,0x8c,0x80,0x90,0x7fed9d43218,0x7fed9d43228,0x7fed9d43238
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5512 --on-initialized-event-handle=336 --parent-handle=340 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1076,12472998930705364035,2305215172996887829,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --use-gl=swiftshader-webgl --service-request-channel-token=72A79103AD8B53E0D29DAB850D27E68B --mojo-platform-channel-handle=1144 --ignored=" --type=renderer " /prefetch:2
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --disable-3d-apis --disable-pinch --no-sandbox --disable-databases --primordial-pipe-token=10C71995200FC8592B75726C54511A81 --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\PEO~1\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 6.1.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 CreativeCloud/4.4.1.298" --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=10C71995200FC8592B75726C54511A81 --renderer-client-id=2 --mojo-platform-channel-handle=1900 /prefetch:1
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\main.js"
\??\C:\windows\system32\conhost.exe "2685898115663294871080014346218854177-788032599877216162-21212844621192961114
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\server.js"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
\??\C:\windows\system32\conhost.exe "362523370395055594-167528586-384930336-2085215785783399983-1266540879-1337250758
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\HP\Shared\hpqwmiex.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1076,12472998930705364035,2305215172996887829,131072 --lang=sk --service-sandbox-type=utility --service-request-channel-token=7588C2280E16DC265AC4181818CBF90E --mojo-platform-channel-handle=5028 --ignored=" --type=renderer " /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1076,12472998930705364035,2305215172996887829,131072 --lang=sk --service-sandbox-type=utility --service-request-channel-token=BEDACEE2ABCF4DF4F5B0F834FD6E8759 --mojo-platform-channel-handle=2856 --ignored=" --type=renderer " /prefetch:8
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,12472998930705364035,2305215172996887829,131072 --disable-gpu-compositing --service-pipe-token=F4FAA41DC44E85F0A59658D15BA76348 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=F4FAA41DC44E85F0A59658D15BA76348 --renderer-client-id=258 --mojo-platform-channel-handle=4688 /prefetch:1
"C:\Users\Peťo\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\HPCeeScheduleForPeťo.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPeťo (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Peťo\AppData\Roaming\Mozilla\Firefox\Profiles\0d8idquh.default-1512895025233

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\digitalpersona.com/ChromeDPAgent]
"Description"=
"Path"=C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-12-06 440680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-06-26 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-12-06 416104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2018-01-30 400768]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-07-27 7194840]
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01 508128]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05 315880]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2018-03-15 178496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-08-31 389120]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2018-04-17 1586008]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2017-03-08 296208]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-31 766208]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-06-26 2312408]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2018-02-14 2409936]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2018-02-01 1194048]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-04-21 19:47:03 ----D---- C:\rsit
2018-04-11 07:56:54 ----A---- C:\windows\SYSWOW64\inseng.dll
2018-04-11 07:56:54 ----A---- C:\windows\SYSWOW64\iernonce.dll
2018-04-11 07:56:54 ----A---- C:\windows\system32\iernonce.dll
2018-04-11 07:56:54 ----A---- C:\windows\system32\ieetwcollector.exe
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\occache.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\inseng.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\ie4uinit.exe
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\iesetup.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\urlmon.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\occache.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\ieetwcollectorres.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\iedkcs32.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2018-04-11 07:56:51 ----A---- C:\windows\system32\msfeeds.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\iesetup.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\dxtrans.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\vbscript.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\iertutil.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\ieapfltr.dll
2018-04-11 07:56:49 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-04-11 07:56:49 ----A---- C:\windows\system32\ieUnatt.exe
2018-04-11 07:56:48 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\mshtmled.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\ieui.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\ieframe.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\dxtmsft.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\wininet.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\webcheck.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\mshtmlmedia.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jsproxy.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript9diag.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript9.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\msrating.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\MshtmlDac.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\mshtml.dll
2018-04-11 07:56:44 ----A---- C:\windows\system32\win32k.sys
2018-04-11 07:56:43 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2018-04-11 07:56:43 ----A---- C:\windows\system32\ucrtbase.dll
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ucrtbase.dll
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2018-04-11 07:56:42 ----A---- C:\windows\system32\ntoskrnl.exe
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\t2embed.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\scksp.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\msexcl40.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\basecsp.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\t2embed.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\scksp.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\basecsp.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\fontsub.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\fontsub.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\atmfd.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\ntdll.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\hal.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2018-04-11 07:56:38 ----A---- C:\windows\system32\drivers\ksecdd.sys
2018-04-11 07:56:38 ----A---- C:\windows\system32\atmfd.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-11 07:56:37 ----A---- C:\windows\system32\wsnmp32.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\wsnmp32.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\smss.exe
2018-04-11 07:56:36 ----A---- C:\windows\system32\schannel.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\rpcrt4.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\lsasrv.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\kernel32.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\kerberos.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\videoprt.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\certcli.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\advapi32.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\sspicli.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\kerberos.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wow64win.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wow64.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\winsrv.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wdigest.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\TSpkg.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\sspicli.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\srcore.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\ncrypt.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\msv1_0.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\KernelBase.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\conhost.exe
2018-04-11 07:56:35 ----A---- C:\windows\system32\bcrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\wdigest.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\schannel.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\bcrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\wow64cpu.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\sspisrv.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\srclient.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\secur32.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\rpchttp.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\lsass.exe
2018-04-11 07:56:34 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2018-04-11 07:56:34 ----A---- C:\windows\system32\drivers\appid.sys
2018-04-11 07:56:34 ----A---- C:\windows\system32\csrsrv.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\cryptbase.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\srclient.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\secur32.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\kernel32.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\credssp.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\appidapi.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\setbcdlocale.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\rstrui.exe
2018-04-11 07:56:33 ----A---- C:\windows\system32\ntvdm64.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\lpk.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\dciman32.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\credssp.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidsvc.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidpolicyconverter.exe
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidapi.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\lpk.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\dciman32.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\auditpol.exe
2018-04-11 07:56:32 ----A---- C:\windows\system32\auditpol.exe
2018-04-11 07:56:32 ----A---- C:\windows\system32\appidcertstorecheck.exe
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-04-11 07:56:29 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-04-11 07:56:29 ----A---- C:\windows\SYSWOW64\instnm.exe
2018-04-11 07:56:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-04-11 07:56:28 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\user.exe
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\msobjs.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\msaudite.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\atmlib.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\adtschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\msobjs.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\msaudite.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\atmlib.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\apisetschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\adtschema.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\invagent.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\generaltel.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\devinv.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\centel.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\appraiser.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\aeinv.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\acmigration.dll
2018-04-11 07:53:38 ----A---- C:\windows\system32\CompatTelRunner.exe
2018-04-11 07:53:38 ----A---- C:\windows\system32\aitstatic.exe
2018-04-11 07:53:38 ----A---- C:\windows\system32\aepic.dll
2018-04-09 17:51:15 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2018-04-09 17:50:51 ----A---- C:\windows\system32\drivers\mbae64.sys
2018-03-25 11:34:00 ----D---- C:\ProgramData\ESET
2018-03-25 11:34:00 ----D---- C:\Program Files\ESET

======List of files/folders modified in the last 1 month======

2018-04-21 19:47:15 ----D---- C:\windows\Prefetch
2018-04-21 19:47:14 ----D---- C:\windows\system32\drivers\etc
2018-04-21 19:47:14 ----D---- C:\Program Files\trend micro
2018-04-21 19:47:05 ----D---- C:\windows\Temp
2018-04-21 19:27:58 ----D---- C:\Users\Peťo\AppData\Roaming\Adobe
2018-04-21 19:08:22 ----D---- C:\ProgramData\Adobe
2018-04-21 12:55:33 ----D---- C:\windows\system32\config
2018-04-21 12:38:11 ----D---- C:\windows\System32
2018-04-21 12:38:02 ----D---- C:\windows\system32\drivers
2018-04-21 12:38:02 ----D---- C:\ProgramData\PDFC
2018-04-21 12:37:56 ----D---- C:\Windows
2018-04-20 06:29:51 ----SHD---- C:\System Volume Information
2018-04-18 09:13:50 ----D---- C:\windows\Tasks
2018-04-18 09:13:50 ----D---- C:\windows\system32\Tasks
2018-04-18 07:42:54 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-04-18 07:42:53 ----D---- C:\windows\inf
2018-04-17 19:58:26 ----D---- C:\windows\system32\catroot2
2018-04-15 07:56:24 ----D---- C:\Users\Peťo\AppData\Roaming\vlc
2018-04-15 05:49:35 ----D---- C:\windows\debug
2018-04-12 08:48:17 ----D---- C:\windows\rescache
2018-04-12 06:56:24 ----D---- C:\windows\winsxs
2018-04-12 06:52:48 ----D---- C:\Program Files\Internet Explorer
2018-04-12 06:52:48 ----D---- C:\Program Files (x86)\Internet Explorer
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\sk-SK
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\en-US
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\cs-CZ
2018-04-12 06:52:47 ----D---- C:\windows\SysWOW64
2018-04-12 06:52:46 ----D---- C:\windows\system32\sk-SK
2018-04-12 06:52:46 ----D---- C:\windows\system32\cs-CZ
2018-04-12 06:52:45 ----D---- C:\windows\system32\en-US
2018-04-12 06:52:44 ----D---- C:\windows\AppPatch
2018-04-12 06:52:43 ----D---- C:\windows\system32\Boot
2018-04-12 06:52:43 ----D---- C:\windows\system32\appraiser
2018-04-11 22:06:22 ----D---- C:\windows\system32\MRT
2018-04-11 22:03:45 ----AC---- C:\windows\system32\MRT-KB890830.exe
2018-04-11 22:03:37 ----AC---- C:\windows\system32\MRT.exe
2018-04-11 22:00:19 ----SHD---- C:\windows\Installer
2018-04-11 22:00:18 ----D---- C:\ProgramData\Microsoft Help
2018-04-10 17:31:24 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-04-10 17:31:08 ----D---- C:\windows\system32\Macromed
2018-04-10 17:31:04 ----D---- C:\windows\SYSWOW64\Macromed
2018-04-09 17:51:02 ----HD---- C:\ProgramData
2018-04-09 05:55:16 ----D---- C:\windows\system32\NDF
2018-04-08 11:02:43 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2018-03-29 06:44:19 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-28 07:09:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-03-25 11:34:28 ----D---- C:\windows\system32\DriverStore
2018-03-25 11:34:00 ----RD---- C:\Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\windows\system32\DRIVERS\edevmon.sys [2018-01-08 110432]
R0 iaStorA;iaStorA; C:\windows\system32\drivers\iaStorA.sys [2013-09-21 630632]
R0 iaStorF;iaStorF; C:\windows\system32\drivers\iaStorF.sys [2013-09-21 28008]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\windows\system32\drivers\iusb3hcs.sys [2017-03-08 22800]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2016-08-24 56760]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2016-08-24 236472]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2016-08-24 139192]
R0 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\windows\system32\drivers\vmbus.sys [2010-11-21 199552]
R1 CLVirtualDrive;CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2018-02-14 137928]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2018-01-08 196112]
R1 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2018-01-08 82816]
R1 EpfwLWF;ESET Firewall; C:\windows\system32\DRIVERS\EpfwLWF.sys [2018-01-08 61520]
R1 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2018-01-08 108320]
R2 ekbdflt;ekbdflt; C:\windows\system32\DRIVERS\ekbdflt.sys [2018-01-08 50136]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2016-02-17 21527568]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2016-02-17 493592]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 IceKore;IceKore; C:\windows\system32\DRIVERS\IceKore.sys [2013-11-14 411608]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2018-01-30 4943744]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2013-07-31 3564376]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2017-03-08 388880]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\windows\system32\DRIVERS\iusb3xhc.sys [2017-03-08 799504]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [2018-04-21 253664]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2014-08-13 125952]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2013-08-15 881880]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2017-07-26 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 VMBusHID;VMBusHID; C:\windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2018-02-14 818128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2009-11-18 98208]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-01-05 2319848]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2016-02-17 305176]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 CreoService;HP Trust Circles Service; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2014-03-25 1927640]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-08-12 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-08-12 298760]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-07-28 500048]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-03-15 2213344]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-06-26 1842904]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-22 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2018-01-30 362880]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-08-13 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-08-13 405976]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-03-27 6479136]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2018-02-01 1795136]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-06-19 246488]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-03-15 2213344]
R3 hpqcaslwmiex;HP CASL Framework Service; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [2016-06-03 1031704]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-10 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2018-01-30 502656]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2014-07-24 1093816]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2018-03-22 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-28 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2014-11-13 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: sync madnet ru - prosim o kontrolu logu

#2 Příspěvek od Rudy »

Zdarvím!
Obávám se, že všechny (nebo téměř všechny servery *.ru) jsou nedůvěryhodné. Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: sync madnet ru - prosim o kontrolu logu

#3 Příspěvek od petob »

# -------------------------------
# Malwarebytes AdwCleaner 7.1.0.0
# -------------------------------
# Build: 04-12-2018
# Database: 2018-04-19.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-21-2018
# Duration: 00:00:08
# OS: Windows 7 Professional
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************


########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: sync madnet ru - prosim o kontrolu logu

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: sync madnet ru - prosim o kontrolu logu

#5 Příspěvek od petob »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peťo at 2018-04-22 07:40:06
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 779 GB (83%) free of 941 GB
Total RAM: 4024 MB (34% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:40:09, on 22. 4. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18978)
Boot mode: Normal

Running processes:
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
C:\Program Files\trend micro\Peťo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMDTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=CMDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMDTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: HP Trust Circles Service (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13679 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
winlogon.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Security\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\igfxCUIService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPSP
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
atieclxx
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-bcf45d72-ec93-4620-9d73-1c590c126e47 -SystemEventPortName:HostProcess-072d18f1-36f5-4a3b-9f6f-0166ee130a23 -IoCancelEventPortName:HostProcess-13d9b8ce-5324-4bf9-be11-6709bbd3b2f6 -NonStateChangingEventPortName:HostProcess-fff6f631-21cd-4f0d-a0c9-73bdd44f7e78 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:32d7a523-eaa2-43ae-96b7-1169fc3110a5 -DeviceGroupId:WpdFsGroup
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
HydraDM64.exe -h:65924 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
igfxEM.exe
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan-5068 C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --disable-3d-apis --disable-pinch --no-sandbox --disable-databases --primordial-pipe-token=8D9727284A63614A314C011BDDD1187D --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\PEO~1\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 6.1.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 CreativeCloud/4.4.1.298" --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=8D9727284A63614A314C011BDDD1187D --renderer-client-id=2 --mojo-platform-channel-handle=1892 /prefetch:1
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5564.0.330227391\1175820270" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" "C:\Users\Peťo\AppData\LocalLow\Mozilla\Temp-{3c5d3645-a528-4a00-8f39-35bd0da54379}" 5564 "\\.\pipe\gecko-crash-server-pipe.5564" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5564.3.1963762205\527003667" -childID 1 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332;  ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵           ​‎‏‐’․‧

‪‫‬‭‮ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{3c5d3645-a528-4a00-8f39-35bd0da54379}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5564 "\\.\pipe\gecko-crash-server-pipe.5564" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5564.13.869283719\1220406806" -childID 2 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332;  ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵           ​‎‏‐’․‧

‪‫‬‭‮ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{3c5d3645-a528-4a00-8f39-35bd0da54379}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5564 "\\.\pipe\gecko-crash-server-pipe.5564" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5564.20.47651252\1659758703" -childID 3 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332;  ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵           ​‎‏‐’․‧

‪‫‬‭‮ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{3c5d3645-a528-4a00-8f39-35bd0da54379}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5564 "\\.\pipe\gecko-crash-server-pipe.5564" tab
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\main.js"
\??\C:\windows\system32\conhost.exe "-1385203147-1048551312-51757401313135805512094728482910493311-108981843-1007433223
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\server.js"
\??\C:\windows\system32\conhost.exe "-1308479988-12137976432565165971822288363-1367474990-5781282291038768462537254361
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\servicing\TrustedInstaller.exe
C:\windows\System32\svchost.exe -k secsvcs
taskeng.exe {9E346EE0-F59F-4644-9ABC-8CBD8074BD6E}
taskeng.exe {5CB2C6DF-1DCD-489A-90F7-A6D65F8A0EE8}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=66.0.3359.117 --initial-client-data=0x84,0x88,0x8c,0x80,0x90,0x7fef55b3218,0x7fef55b3228,0x7fef55b3238
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=7608 --on-initialized-event-handle=336 --parent-handle=340 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1116,3384995267463474806,5439868649983237048,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --use-gl=swiftshader-webgl --service-request-channel-token=16BE0C1B33C4DA1A5B80867A1796DAC1 --mojo-platform-channel-handle=1128 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1116,3384995267463474806,5439868649983237048,131072 --disable-gpu-compositing --service-pipe-token=71BF9DE29E9E40EB2C2DA773C46F1455 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=71BF9DE29E9E40EB2C2DA773C46F1455 --renderer-client-id=7 --mojo-platform-channel-handle=4528 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1116,3384995267463474806,5439868649983237048,131072 --disable-gpu-compositing --service-pipe-token=689286A8CBAFB307A07EE092F28E0D6B --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=689286A8CBAFB307A07EE092F28E0D6B --renderer-client-id=9 --mojo-platform-channel-handle=2676 /prefetch:1
"C:\Users\Peťo\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\HPCeeScheduleForPeťo.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPeťo (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Peťo\AppData\Roaming\Mozilla\Firefox\Profiles\0d8idquh.default-1512895025233

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\digitalpersona.com/ChromeDPAgent]
"Description"=
"Path"=C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-12-06 440680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-06-26 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-12-06 416104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2018-01-30 400768]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-07-27 7194840]
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01 508128]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05 315880]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2018-03-15 178496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-08-31 389120]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2018-04-17 1586008]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2017-03-08 296208]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-31 766208]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-06-26 2312408]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2018-02-14 2409936]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2018-02-01 1194048]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-04-21 21:21:55 ----D---- C:\AdwCleaner
2018-04-21 19:47:03 ----D---- C:\rsit
2018-04-11 07:56:54 ----A---- C:\windows\SYSWOW64\inseng.dll
2018-04-11 07:56:54 ----A---- C:\windows\SYSWOW64\iernonce.dll
2018-04-11 07:56:54 ----A---- C:\windows\system32\iernonce.dll
2018-04-11 07:56:54 ----A---- C:\windows\system32\ieetwcollector.exe
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\occache.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\inseng.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\ie4uinit.exe
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\iesetup.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\urlmon.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\occache.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\ieetwcollectorres.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\iedkcs32.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2018-04-11 07:56:51 ----A---- C:\windows\system32\msfeeds.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\iesetup.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\dxtrans.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\vbscript.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\iertutil.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\ieapfltr.dll
2018-04-11 07:56:49 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-04-11 07:56:49 ----A---- C:\windows\system32\ieUnatt.exe
2018-04-11 07:56:48 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\mshtmled.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\ieui.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\ieframe.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\dxtmsft.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\wininet.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\webcheck.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\mshtmlmedia.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jsproxy.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript9diag.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript9.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\msrating.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\MshtmlDac.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\mshtml.dll
2018-04-11 07:56:44 ----A---- C:\windows\system32\win32k.sys
2018-04-11 07:56:43 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2018-04-11 07:56:43 ----A---- C:\windows\system32\ucrtbase.dll
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ucrtbase.dll
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2018-04-11 07:56:42 ----A---- C:\windows\system32\ntoskrnl.exe
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\t2embed.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\scksp.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\msexcl40.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\basecsp.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\t2embed.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\scksp.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\basecsp.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\fontsub.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\fontsub.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\atmfd.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\ntdll.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\hal.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2018-04-11 07:56:38 ----A---- C:\windows\system32\drivers\ksecdd.sys
2018-04-11 07:56:38 ----A---- C:\windows\system32\atmfd.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-11 07:56:37 ----A---- C:\windows\system32\wsnmp32.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\wsnmp32.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\smss.exe
2018-04-11 07:56:36 ----A---- C:\windows\system32\schannel.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\rpcrt4.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\lsasrv.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\kernel32.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\kerberos.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\videoprt.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\certcli.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\advapi32.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\sspicli.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\kerberos.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wow64win.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wow64.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\winsrv.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wdigest.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\TSpkg.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\sspicli.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\srcore.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\ncrypt.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\msv1_0.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\KernelBase.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\conhost.exe
2018-04-11 07:56:35 ----A---- C:\windows\system32\bcrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\wdigest.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\schannel.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\bcrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\wow64cpu.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\sspisrv.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\srclient.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\secur32.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\rpchttp.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\lsass.exe
2018-04-11 07:56:34 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2018-04-11 07:56:34 ----A---- C:\windows\system32\drivers\appid.sys
2018-04-11 07:56:34 ----A---- C:\windows\system32\csrsrv.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\cryptbase.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\srclient.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\secur32.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\kernel32.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\credssp.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\appidapi.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\setbcdlocale.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\rstrui.exe
2018-04-11 07:56:33 ----A---- C:\windows\system32\ntvdm64.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\lpk.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\dciman32.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\credssp.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidsvc.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidpolicyconverter.exe
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidapi.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\lpk.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\dciman32.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\auditpol.exe
2018-04-11 07:56:32 ----A---- C:\windows\system32\auditpol.exe
2018-04-11 07:56:32 ----A---- C:\windows\system32\appidcertstorecheck.exe
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-04-11 07:56:29 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-04-11 07:56:29 ----A---- C:\windows\SYSWOW64\instnm.exe
2018-04-11 07:56:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-04-11 07:56:28 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\user.exe
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\msobjs.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\msaudite.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\atmlib.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\adtschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\msobjs.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\msaudite.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\atmlib.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\apisetschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\adtschema.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\invagent.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\generaltel.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\devinv.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\centel.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\appraiser.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\aeinv.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\acmigration.dll
2018-04-11 07:53:38 ----A---- C:\windows\system32\CompatTelRunner.exe
2018-04-11 07:53:38 ----A---- C:\windows\system32\aitstatic.exe
2018-04-11 07:53:38 ----A---- C:\windows\system32\aepic.dll
2018-04-09 17:51:15 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2018-04-09 17:50:51 ----A---- C:\windows\system32\drivers\mbae64.sys
2018-03-25 11:34:00 ----D---- C:\ProgramData\ESET
2018-03-25 11:34:00 ----D---- C:\Program Files\ESET

======List of files/folders modified in the last 1 month======

2018-04-22 07:40:09 ----D---- C:\windows\Temp
2018-04-22 07:40:07 ----D---- C:\Program Files\trend micro
2018-04-22 07:29:00 ----D---- C:\windows\system32\config
2018-04-22 07:26:05 ----D---- C:\windows\System32
2018-04-22 07:25:55 ----D---- C:\windows\system32\drivers
2018-04-22 07:25:52 ----D---- C:\ProgramData\PDFC
2018-04-22 07:25:46 ----D---- C:\Windows
2018-04-21 21:26:37 ----D---- C:\windows\system32\Tasks
2018-04-21 21:17:41 ----D---- C:\Users\Peťo\AppData\Roaming\vlc
2018-04-21 20:04:11 ----D---- C:\windows\Prefetch
2018-04-21 19:47:14 ----D---- C:\windows\system32\drivers\etc
2018-04-21 19:27:58 ----D---- C:\Users\Peťo\AppData\Roaming\Adobe
2018-04-21 19:27:58 ----D---- C:\ProgramData\Adobe
2018-04-20 06:29:51 ----SHD---- C:\System Volume Information
2018-04-18 09:13:50 ----D---- C:\windows\Tasks
2018-04-18 07:42:54 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-04-18 07:42:53 ----D---- C:\windows\inf
2018-04-17 19:58:26 ----D---- C:\windows\system32\catroot2
2018-04-15 05:49:35 ----D---- C:\windows\debug
2018-04-12 08:48:17 ----D---- C:\windows\rescache
2018-04-12 06:56:24 ----D---- C:\windows\winsxs
2018-04-12 06:52:48 ----D---- C:\Program Files\Internet Explorer
2018-04-12 06:52:48 ----D---- C:\Program Files (x86)\Internet Explorer
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\sk-SK
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\en-US
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\cs-CZ
2018-04-12 06:52:47 ----D---- C:\windows\SysWOW64
2018-04-12 06:52:46 ----D---- C:\windows\system32\sk-SK
2018-04-12 06:52:46 ----D---- C:\windows\system32\cs-CZ
2018-04-12 06:52:45 ----D---- C:\windows\system32\en-US
2018-04-12 06:52:44 ----D---- C:\windows\AppPatch
2018-04-12 06:52:43 ----D---- C:\windows\system32\Boot
2018-04-12 06:52:43 ----D---- C:\windows\system32\appraiser
2018-04-11 22:06:22 ----D---- C:\windows\system32\MRT
2018-04-11 22:03:45 ----AC---- C:\windows\system32\MRT-KB890830.exe
2018-04-11 22:03:37 ----AC---- C:\windows\system32\MRT.exe
2018-04-11 22:00:19 ----SHD---- C:\windows\Installer
2018-04-11 22:00:18 ----D---- C:\ProgramData\Microsoft Help
2018-04-10 17:31:24 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-04-10 17:31:08 ----D---- C:\windows\system32\Macromed
2018-04-10 17:31:04 ----D---- C:\windows\SYSWOW64\Macromed
2018-04-09 17:51:02 ----HD---- C:\ProgramData
2018-04-09 05:55:16 ----D---- C:\windows\system32\NDF
2018-04-08 11:02:43 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2018-03-29 06:44:19 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-28 07:09:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-03-25 11:34:28 ----D---- C:\windows\system32\DriverStore
2018-03-25 11:34:00 ----RD---- C:\Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\windows\system32\DRIVERS\edevmon.sys [2018-01-08 110432]
R0 iaStorA;iaStorA; C:\windows\system32\drivers\iaStorA.sys [2013-09-21 630632]
R0 iaStorF;iaStorF; C:\windows\system32\drivers\iaStorF.sys [2013-09-21 28008]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\windows\system32\drivers\iusb3hcs.sys [2017-03-08 22800]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2016-08-24 56760]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2016-08-24 236472]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2016-08-24 139192]
R0 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\windows\system32\drivers\vmbus.sys [2010-11-21 199552]
R1 CLVirtualDrive;CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2018-02-14 137928]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2018-01-08 196112]
R1 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2018-01-08 82816]
R1 EpfwLWF;ESET Firewall; C:\windows\system32\DRIVERS\EpfwLWF.sys [2018-01-08 61520]
R1 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2018-01-08 108320]
R2 ekbdflt;ekbdflt; C:\windows\system32\DRIVERS\ekbdflt.sys [2018-01-08 50136]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2016-02-17 21527568]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2016-02-17 493592]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 IceKore;IceKore; C:\windows\system32\DRIVERS\IceKore.sys [2013-11-14 411608]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2018-01-30 4943744]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2013-07-31 3564376]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2017-03-08 388880]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\windows\system32\DRIVERS\iusb3xhc.sys [2017-03-08 799504]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [2018-04-22 253664]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2014-08-13 125952]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2013-08-15 881880]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2017-07-26 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 VMBusHID;VMBusHID; C:\windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2018-02-14 818128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2009-11-18 98208]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-01-05 2319848]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2016-02-17 305176]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 CreoService;HP Trust Circles Service; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2014-03-25 1927640]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-08-12 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-08-12 298760]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-07-28 500048]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-03-15 2213344]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-06-26 1842904]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-22 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2018-01-30 362880]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-08-13 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-08-13 405976]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-03-27 6479136]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2018-02-01 1795136]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-06-19 246488]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-03-15 2213344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-10 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2018-01-30 502656]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 hpqcaslwmiex;HP CASL Framework Service; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [2016-06-03 1031704]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2014-07-24 1093816]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2018-03-22 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-28 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2014-11-13 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: sync madnet ru - prosim o kontrolu logu

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:services
Bonjour Service

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: sync madnet ru - prosim o kontrolu logu

#7 Příspěvek od petob »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peťo at 2018-04-22 12:24:32
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 780 GB (83%) free of 941 GB
Total RAM: 4024 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:24:34, on 22. 4. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18978)
Boot mode: Normal

Running processes:
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
C:\Program Files\trend micro\Peťo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMDTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=CMDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMDTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: HP Trust Circles Service (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13590 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
winlogon.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Security\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs

C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\igfxCUIService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPSP
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4594e3b3-2cdd-4b27-85c8-d345e82a0036 -SystemEventPortName:HostProcess-1a52199e-cfc1-4e6e-be3f-9fc1b8e03f7f -IoCancelEventPortName:HostProcess-b0cac244-8ae3-4240-9e51-d791945ff848 -NonStateChangingEventPortName:HostProcess-54e7abbb-ac66-4a37-b4b4-12618c71edfb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d4a72b84-ea00-4492-9f69-db49588db1b6 -DeviceGroupId:WpdFsGroup
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
igfxEM.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\system32\sppsvc.exe
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
HydraDM64.exe -h:65982 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan-1360 C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --disable-3d-apis --disable-pinch --no-sandbox --disable-databases --primordial-pipe-token=E715D9A1E61662F88B380724C01F7822 --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\PEO~1\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 6.1.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 CreativeCloud/4.4.1.298" --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=E715D9A1E61662F88B380724C01F7822 --renderer-client-id=2 --mojo-platform-channel-handle=2028 /prefetch:1
"C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\main.js"
\??\C:\windows\system32\conhost.exe "1449896500-19909704071334473032733743808880664998745820625-571589632-692220430
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\server.js"
\??\C:\windows\system32\conhost.exe "-1899853167-830233466147316874-460464582327344536-1291670166845593177284693243
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=66.0.3359.117 --initial-client-data=0x84,0x88,0x8c,0x80,0x90,0x7fec8573218,0x7fec8573228,0x7fec8573238
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5344 --on-initialized-event-handle=336 --parent-handle=340 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1088,8355590954064896298,3748520582737436538,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --use-gl=swiftshader-webgl --service-request-channel-token=AEE7969037572579C05B5BFE71FDECA9 --mojo-platform-channel-handle=1112 --ignored=" --type=renderer " /prefetch:2
"C:\windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
taskeng.exe {82B5CAF0-365E-4BA5-9D06-02E43BF86D8F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,8355590954064896298,3748520582737436538,131072 --disable-gpu-compositing --service-pipe-token=4C40854C033BF5ABF0E006475901B776 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=4C40854C033BF5ABF0E006475901B776 --renderer-client-id=10 --mojo-platform-channel-handle=852 /prefetch:1
"C:\Users\Peťo\Desktop\RSITx64.exe"
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\windows\tasks\HPCeeScheduleForPeťo.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPeťo (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Peťo\AppData\Roaming\Mozilla\Firefox\Profiles\0d8idquh.default-1512895025233

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\digitalpersona.com/ChromeDPAgent]
"Description"=
"Path"=C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-12-06 440680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-06-26 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-12-06 416104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2018-01-30 400768]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-07-27 7194840]
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01 508128]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05 315880]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2018-03-15 178496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-08-31 389120]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2018-04-17 1586008]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2017-03-08 296208]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-31 766208]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-06-26 2312408]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2018-02-14 2409936]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2018-02-01 1194048]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-04-22 12:13:11 ----D---- C:\_OTM
2018-04-21 21:21:55 ----D---- C:\AdwCleaner
2018-04-21 19:47:03 ----D---- C:\rsit
2018-04-11 07:56:54 ----A---- C:\windows\SYSWOW64\inseng.dll
2018-04-11 07:56:54 ----A---- C:\windows\SYSWOW64\iernonce.dll
2018-04-11 07:56:54 ----A---- C:\windows\system32\iernonce.dll
2018-04-11 07:56:54 ----A---- C:\windows\system32\ieetwcollector.exe
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\occache.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-04-11 07:56:53 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\inseng.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-04-11 07:56:53 ----A---- C:\windows\system32\ie4uinit.exe
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\iesetup.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-04-11 07:56:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\urlmon.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\occache.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\ieetwcollectorres.dll
2018-04-11 07:56:52 ----A---- C:\windows\system32\iedkcs32.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-04-11 07:56:51 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2018-04-11 07:56:51 ----A---- C:\windows\system32\msfeeds.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\iesetup.dll
2018-04-11 07:56:51 ----A---- C:\windows\system32\dxtrans.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2018-04-11 07:56:50 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\vbscript.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\iertutil.dll
2018-04-11 07:56:50 ----A---- C:\windows\system32\ieapfltr.dll
2018-04-11 07:56:49 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-04-11 07:56:49 ----A---- C:\windows\system32\ieUnatt.exe
2018-04-11 07:56:48 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\mshtmled.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\ieui.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\ieframe.dll
2018-04-11 07:56:48 ----A---- C:\windows\system32\dxtmsft.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\wininet.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\webcheck.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\mshtmlmedia.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jsproxy.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript9diag.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript9.dll
2018-04-11 07:56:47 ----A---- C:\windows\system32\jscript.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\msrating.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\MshtmlDac.dll
2018-04-11 07:56:46 ----A---- C:\windows\system32\mshtml.dll
2018-04-11 07:56:44 ----A---- C:\windows\system32\win32k.sys
2018-04-11 07:56:43 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2018-04-11 07:56:43 ----A---- C:\windows\system32\ucrtbase.dll
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ucrtbase.dll
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2018-04-11 07:56:42 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2018-04-11 07:56:42 ----A---- C:\windows\system32\ntoskrnl.exe
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\t2embed.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\scksp.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\msexcl40.dll
2018-04-11 07:56:41 ----A---- C:\windows\SYSWOW64\basecsp.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\t2embed.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\scksp.dll
2018-04-11 07:56:41 ----A---- C:\windows\system32\basecsp.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\fontsub.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\fontsub.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-11 07:56:40 ----A---- C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-11 07:56:39 ----A---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-11 07:56:39 ----A---- C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\atmfd.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\ntdll.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\hal.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2018-04-11 07:56:38 ----A---- C:\windows\system32\drivers\ksecdd.sys
2018-04-11 07:56:38 ----A---- C:\windows\system32\atmfd.dll
2018-04-11 07:56:38 ----A---- C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-11 07:56:37 ----A---- C:\windows\system32\wsnmp32.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\wsnmp32.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-04-11 07:56:36 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\smss.exe
2018-04-11 07:56:36 ----A---- C:\windows\system32\schannel.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\rpcrt4.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\lsasrv.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\kernel32.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\kerberos.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\videoprt.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-04-11 07:56:36 ----A---- C:\windows\system32\certcli.dll
2018-04-11 07:56:36 ----A---- C:\windows\system32\advapi32.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\sspicli.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-04-11 07:56:35 ----A---- C:\windows\SYSWOW64\kerberos.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wow64win.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wow64.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\winsrv.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\wdigest.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\TSpkg.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\sspicli.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\srcore.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\ncrypt.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\msv1_0.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\KernelBase.dll
2018-04-11 07:56:35 ----A---- C:\windows\system32\conhost.exe
2018-04-11 07:56:35 ----A---- C:\windows\system32\bcrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\wdigest.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\schannel.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\SYSWOW64\bcrypt.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\wow64cpu.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\sspisrv.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\srclient.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\secur32.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\rpchttp.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\lsass.exe
2018-04-11 07:56:34 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2018-04-11 07:56:34 ----A---- C:\windows\system32\drivers\appid.sys
2018-04-11 07:56:34 ----A---- C:\windows\system32\csrsrv.dll
2018-04-11 07:56:34 ----A---- C:\windows\system32\cryptbase.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\srclient.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\secur32.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\kernel32.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\credssp.dll
2018-04-11 07:56:33 ----A---- C:\windows\SYSWOW64\appidapi.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\setbcdlocale.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\rstrui.exe
2018-04-11 07:56:33 ----A---- C:\windows\system32\ntvdm64.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\lpk.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\dciman32.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\credssp.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidsvc.dll
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidpolicyconverter.exe
2018-04-11 07:56:33 ----A---- C:\windows\system32\appidapi.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-04-11 07:56:32 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\lpk.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\dciman32.dll
2018-04-11 07:56:32 ----A---- C:\windows\SYSWOW64\auditpol.exe
2018-04-11 07:56:32 ----A---- C:\windows\system32\auditpol.exe
2018-04-11 07:56:32 ----A---- C:\windows\system32\appidcertstorecheck.exe
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-04-11 07:56:31 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-04-11 07:56:30 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-04-11 07:56:29 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-04-11 07:56:29 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-04-11 07:56:29 ----A---- C:\windows\SYSWOW64\instnm.exe
2018-04-11 07:56:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-04-11 07:56:28 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\user.exe
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\msobjs.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\msaudite.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\atmlib.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\SYSWOW64\adtschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\msobjs.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\msaudite.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\atmlib.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\apisetschema.dll
2018-04-11 07:56:28 ----A---- C:\windows\system32\adtschema.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\invagent.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\generaltel.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\devinv.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\centel.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\appraiser.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\aeinv.dll
2018-04-11 07:53:39 ----A---- C:\windows\system32\acmigration.dll
2018-04-11 07:53:38 ----A---- C:\windows\system32\CompatTelRunner.exe
2018-04-11 07:53:38 ----A---- C:\windows\system32\aitstatic.exe
2018-04-11 07:53:38 ----A---- C:\windows\system32\aepic.dll
2018-04-09 17:51:15 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2018-04-09 17:50:51 ----A---- C:\windows\system32\drivers\mbae64.sys
2018-03-25 11:34:00 ----D---- C:\ProgramData\ESET
2018-03-25 11:34:00 ----D---- C:\Program Files\ESET

======List of files/folders modified in the last 1 month======

2018-04-22 12:24:34 ----D---- C:\windows\Prefetch
2018-04-22 12:24:33 ----D---- C:\windows\Temp
2018-04-22 12:24:33 ----D---- C:\Program Files\trend micro
2018-04-22 12:19:14 ----D---- C:\windows\System32
2018-04-22 12:17:38 ----D---- C:\ProgramData\PDFC
2018-04-22 12:17:36 ----D---- C:\windows\system32\drivers
2018-04-22 12:17:32 ----D---- C:\Windows
2018-04-22 12:16:51 ----D---- C:\windows\system32\config
2018-04-21 21:26:37 ----D---- C:\windows\system32\Tasks
2018-04-21 21:17:41 ----D---- C:\Users\Peťo\AppData\Roaming\vlc
2018-04-21 19:47:14 ----D---- C:\windows\system32\drivers\etc
2018-04-21 19:27:58 ----D---- C:\Users\Peťo\AppData\Roaming\Adobe
2018-04-21 19:27:58 ----D---- C:\ProgramData\Adobe
2018-04-20 06:29:51 ----SHD---- C:\System Volume Information
2018-04-18 09:13:50 ----D---- C:\windows\Tasks
2018-04-18 07:42:54 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-04-18 07:42:53 ----D---- C:\windows\inf
2018-04-17 19:58:26 ----D---- C:\windows\system32\catroot2
2018-04-15 05:49:35 ----D---- C:\windows\debug
2018-04-12 08:48:17 ----D---- C:\windows\rescache
2018-04-12 06:56:24 ----D---- C:\windows\winsxs
2018-04-12 06:52:48 ----D---- C:\Program Files\Internet Explorer
2018-04-12 06:52:48 ----D---- C:\Program Files (x86)\Internet Explorer
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\sk-SK
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\en-US
2018-04-12 06:52:47 ----D---- C:\windows\SYSWOW64\cs-CZ
2018-04-12 06:52:47 ----D---- C:\windows\SysWOW64
2018-04-12 06:52:46 ----D---- C:\windows\system32\sk-SK
2018-04-12 06:52:46 ----D---- C:\windows\system32\cs-CZ
2018-04-12 06:52:45 ----D---- C:\windows\system32\en-US
2018-04-12 06:52:44 ----D---- C:\windows\AppPatch
2018-04-12 06:52:43 ----D---- C:\windows\system32\Boot
2018-04-12 06:52:43 ----D---- C:\windows\system32\appraiser
2018-04-11 22:06:22 ----D---- C:\windows\system32\MRT
2018-04-11 22:03:45 ----AC---- C:\windows\system32\MRT-KB890830.exe
2018-04-11 22:03:37 ----AC---- C:\windows\system32\MRT.exe
2018-04-11 22:00:19 ----SHD---- C:\windows\Installer
2018-04-11 22:00:18 ----D---- C:\ProgramData\Microsoft Help
2018-04-10 17:31:24 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-04-10 17:31:08 ----D---- C:\windows\system32\Macromed
2018-04-10 17:31:04 ----D---- C:\windows\SYSWOW64\Macromed
2018-04-09 17:51:02 ----HD---- C:\ProgramData
2018-04-09 05:55:16 ----D---- C:\windows\system32\NDF
2018-04-08 11:02:43 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2018-03-29 06:44:19 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-28 07:09:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-03-25 11:34:28 ----D---- C:\windows\system32\DriverStore
2018-03-25 11:34:00 ----RD---- C:\Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\windows\system32\DRIVERS\edevmon.sys [2018-01-08 110432]
R0 iaStorA;iaStorA; C:\windows\system32\drivers\iaStorA.sys [2013-09-21 630632]
R0 iaStorF;iaStorF; C:\windows\system32\drivers\iaStorF.sys [2013-09-21 28008]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\windows\system32\drivers\iusb3hcs.sys [2017-03-08 22800]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2016-08-24 56760]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2016-08-24 236472]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2016-08-24 139192]
R0 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\windows\system32\drivers\vmbus.sys [2010-11-21 199552]
R1 CLVirtualDrive;CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2018-02-14 137928]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2018-01-08 196112]
R1 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2018-01-08 82816]
R1 EpfwLWF;ESET Firewall; C:\windows\system32\DRIVERS\EpfwLWF.sys [2018-01-08 61520]
R1 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2018-01-08 108320]
R2 ekbdflt;ekbdflt; C:\windows\system32\DRIVERS\ekbdflt.sys [2018-01-08 50136]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2016-02-17 21527568]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2016-02-17 493592]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 IceKore;IceKore; C:\windows\system32\DRIVERS\IceKore.sys [2013-11-14 411608]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2018-01-30 4943744]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2013-07-31 3564376]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2017-03-08 388880]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\windows\system32\DRIVERS\iusb3xhc.sys [2017-03-08 799504]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [2018-04-22 253664]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2014-08-13 125952]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2013-08-15 881880]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2017-07-26 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 VMBusHID;VMBusHID; C:\windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2018-02-14 818128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2009-11-18 98208]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-01-05 2319848]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2016-02-17 305176]
R2 CreoService;HP Trust Circles Service; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2014-03-25 1927640]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-08-12 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-08-12 298760]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-07-28 500048]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-03-15 2213344]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-06-26 1842904]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-22 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2018-01-30 362880]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-08-13 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-08-13 405976]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-03-27 6479136]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2018-02-01 1795136]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-06-19 246488]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-03-15 2213344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-10 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2018-01-30 502656]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 hpqcaslwmiex;HP CASL Framework Service; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [2016-06-03 1031704]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2014-07-24 1093816]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2018-03-22 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-28 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2014-11-13 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: sync madnet ru - prosim o kontrolu logu

#8 Příspěvek od Rudy »

Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: sync madnet ru - prosim o kontrolu logu

#9 Příspěvek od petob »

No nateraz to vyzerá v poriadku. Eset mi nič neukazuje. Takže snád je to ok. Alebo ste mali na mysli ešte nejaké iné zmeny ?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: sync madnet ru - prosim o kontrolu logu

#10 Příspěvek od Rudy »

Je tu řeč o madnet.ru, takže vše, co se k tomu vztahuje.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: sync madnet ru - prosim o kontrolu logu

#11 Příspěvek od petob »

No ako píšem. Eset mi už neukazuje nič, dal som aj skenovať. Takže asi je to ok. Ak už by som teda nemal vykonať nič, tak potom dakujem za ochotu a čas. Vážim si to.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: sync madnet ru - prosim o kontrolu logu

#12 Příspěvek od Rudy »

Z mé strany je to vše. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno