Po delší době zdravím zdejší dobré a ochotné duše, potřeboval bych pomoci s jedním PC.
Před asi 2 týdny se mně ozval jeden kamarád s prosbou, že se mu na PC sekají všechny hry. Po kontrole teplot, ovladačů a vše možného jsme došli k závěru, že počitac je težce zavirovaný...Program Malwarebytes nám to potvrdil, jednalo se předevšim o Bitcoin Miner virus...Nějakou dobu byl klid, až do dnešního dne, kdy se jako blesk z čistého nebe objevili další Bitcoin minery. Kamarád tvrdí, že nic z nikama nestahoval, tak jsem dospěl k závěru, že v pc asi zůstalo něco co ty viry do pc znovu stáhlo a tak bych prosil o kontrolu logu....děkuji všem.
ystem drive C: has 182 GB (70%) free of 262 GB
Total RAM: 8149 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:29:46, on 10.07.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal
Running processes:
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
C:\Users\jirka\AppData\Local\Microsoft\OneDrive\OneDrive.exe
E:\Steam\Steam.exe
C:\ProgramData\BOINC\projects\work.charityengine.com\wrapper_26014_windows_intelx86.exe
C:\ProgramData\BOINC\slots\0\ce11.exe
C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.84.344.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files\trend micro\jirka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?bcutc=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?bcutc=sp- ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?bcutc=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\jirka\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Steam] "E:\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Chromium] "c:\users\jirka\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory=Default --restore-last-session
O4 - HKCU\..\Run: [McAfeeSafeConnect] C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
O4 - HKCU\..\Run: [Discord] C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
O4 - HKCU\..\Run: [FACEIT] "C:\Users\jirka\AppData\Local\FACEITApp\update.exe" --processStart "FACEIT.exe"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ASUS Com Service (asComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Vpn Service - AnchorFree Inc. - C:\Program Files (x86)\McAfee Safe Connect\service\VpnService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 12811 bytes
======Listing Processes======
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atiesrxx.exe
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k netsvcs -s CertPropSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localservice -p -s BthAvctpSvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s QWAVE
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe" -userServiceMode
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"ctfmon.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --ran-launcher --started-from-shortcut
AvastUI.exe /nogui
"C:\Program Files\Opera\54.0.2952.51\opera_crashreporter.exe" --ran-launcher --started-from-shortcut --crash-reporter-parent-id=1028
"C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe" -ByGPUTweakII -12 273
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=gpu-process --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --service-request-channel-token=AD98A31FA7DB19C05E50702D9B96925D --mojo-platform-channel-handle=1732 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\BOINC\boinctray.exe"
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=5A7C09E41387B7F026B0436EA156B2FB --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=5A7C09E41387B7F026B0436EA156B2FB --renderer-client-id=3 --mojo-platform-channel-handle=3300 /prefetch:1
"C:\Program Files\BOINC\charityengine.exe" /a /s
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=02D942002ACD01DD26126E24BBC90C4B --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=02D942002ACD01DD26126E24BBC90C4B --renderer-client-id=4 --mojo-platform-channel-handle=3456 /prefetch:1
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=8E3F44B987B1204ECDC81415954F5DB2 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8E3F44B987B1204ECDC81415954F5DB2 --renderer-client-id=5 --mojo-platform-channel-handle=3464 /prefetch:1
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=8FB19FDBE97E04EED7BB2471F71B3949 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8FB19FDBE97E04EED7BB2471F71B3949 --renderer-client-id=6 --mojo-platform-channel-handle=3492 /prefetch:1
"C:\Program Files\BOINC\boinc.exe" --redirectio --launched_by_manager
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=4D5BA8DF99BEE936EC128D517A43E995 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=4D5BA8DF99BEE936EC128D517A43E995 --renderer-client-id=12 --mojo-platform-channel-handle=4160 /prefetch:1
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=04B0EC16D34535CD2C863298DCD20D1D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=04B0EC16D34535CD2C863298DCD20D1D --renderer-client-id=14 --mojo-platform-channel-handle=4276 /prefetch:1
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=AD9A611C784C5BFE631A8D5CAB82F9DB --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=AD9A611C784C5BFE631A8D5CAB82F9DB --renderer-client-id=15 --mojo-platform-channel-handle=4416 /prefetch:1
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Users\jirka\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=1EF67C0084BB328D00601FCA6BD92678 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1EF67C0084BB328D00601FCA6BD92678 --renderer-client-id=10 --mojo-platform-channel-handle=8440 /prefetch:1
"E:\Steam\Steam.exe" -silent
projects/work.charityengine.com/wrapper_26014_windows_intelx86.exe
"ce11.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
E:\Steam\bin\cef\cef.win7\steamwebhelper.exe "-lang=cs_CZ" "-cachedir=C:\Users\jirka\AppData\Local\Steam\htmlcache" "-steampid=9356" "-buildid=1528497815" "-steamid=0" "-clientui=E:\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --disable-features=TouchpadAndWheelScrollLatching,AsyncWheelEvents --enable-media-stream --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=E:\Steam\logs\cef_log.txt"
E:\Steam\bin\cef\cef.win7\steamwebhelper.exe --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\jirka\AppData\Local\CEF\User Data\Crashpad" "--metrics-dir=C:\Users\jirka\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win32 --annotation=product=cefwebhelper --annotation=version=1.0 --initial-client-data=0x328,0x32c,0x330,0x324,0x334,0x59aa86f0,0x59aa8700,0x59aa870c
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=D14156D37651244B2F09AD342EB398B4 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=D14156D37651244B2F09AD342EB398B4 --renderer-client-id=11 --mojo-platform-channel-handle=7900 /prefetch:1
"C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe"
"C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe" --type=gpu-process --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,19,20,23,26,40,71 --gpu-vendor-id=0x1002 --gpu-device-id=0x67df --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=24.20.11021.1000 --gpu-driver-date=6-7-2018 --service-request-channel-token=77D1B6D1E1B9912F2B8F7959F0DD7B6C --mojo-platform-channel-handle=1544 /prefetch:2
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=2404E2EC84FABDA03EFCB7AE9C0BC141 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=2404E2EC84FABDA03EFCB7AE9C0BC141 --renderer-client-id=20 --mojo-platform-channel-handle=6652 /prefetch:1
"C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.84.344.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe"
"C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe" --type=renderer --no-sandbox --primordial-pipe-token=5B3F14C3B7C619F1997C482B62A0EE67 --lang=cs --app-user-model-id=com.squirrel.Discord.Discord --app-path="C:\Users\jirka\AppData\Local\Discord\app-0.0.301\resources\app.asar" --node-integration=false --preload="C:\Users\jirka\AppData\Roaming\discord\0.0.301\modules\discord_desktop_core\core.asar\app\mainScreenPreload.js" --background-color=#2f3136 --enable-blink-features=EnumerateDevices,AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=5B3F14C3B7C619F1997C482B62A0EE67 --renderer-client-id=6 --mojo-platform-channel-handle=2584 /prefetch:1
"E:\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=gpu-process --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --log-file="E:\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --lang=cs-CZ --buildid=1528497815 --steamid=0 --gpu-preferences=KAAAAAAAAAAABwAAAQAAAAAAAAAAAGAAAQAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1002 --gpu-device-id=0x67df --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=24.20.11021.1000 --gpu-driver-date=6-7-2018 --log-file="E:\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --lang=cs-CZ --buildid=1528497815 --steamid=0 --service-request-channel-token=330C5081BECAA04EF466A6D812CF39C0 --mojo-platform-channel-handle=1956 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe --overlay-host
"E:\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --disable-gpu-compositing --service-pipe-token=03A04295ED04F6536DCC9E9DC8EDBB29 --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=en-US --log-file="E:\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --disable-spell-checking --buildid=1528497815 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=03A04295ED04F6536DCC9E9DC8EDBB29 --renderer-client-id=4 --mojo-platform-channel-handle=1076 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15911.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11805.1001.42.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.XboxApp_41.41.18005.0_x64__8wekyb3d8bbwe\XboxApp.exe" -ServerName:Microsoft.XboxApp.AppXf18qzvvf02y898dj8d1frhp2562vbpn5.mca
C:\WINDOWS\system32\AUDIODG.EXE 0x7b8
"C:\Program Files\Opera\54.0.2952.51\opera.exe" --type=renderer --field-trial-handle=1720,3517765853206014031,14729587110745674949,131072 --disable-features=SharedArrayBuffer --service-pipe-token=C26FFEFEE5075126E8805DCE6D2E1694 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-use-minimal-package=off --crash-reporter-pid=10056 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=C26FFEFEE5075126E8805DCE6D2E1694 --renderer-client-id=33 --mojo-platform-channel-handle=1624 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe35_ Global\UsGthrCtrlFltPipeMssGthrPipe35 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 712 724 732 8192 728
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\jirka\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
======Scheduled tasks folder======
C:\WINDOWS\tasks\Avast Driver Updater Startup.job - C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe -boot
=========Mozilla firefox=========
ProfilePath - C:\Users\jirka\AppData\Roaming\Mozilla\Firefox\Profiles\o0enmu2b.default
prefs.js - "browser.startup.homepage" - "https://www.google.com/?bcutc=sp-006"
prefs.js - "keyword.URL" - "https://www.google.com/search?bcutc=sp-006"
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.171.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.171.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
C:\Users\jirka\AppData\Roaming\Mozilla\Firefox\Profiles\o0enmu2b.default\searchplugins\
google-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2018-06-05 199640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-04-28 149168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-06-26 480200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2018-06-05 167480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-06-26 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-06-27 242904]
"boinctray"=C:\Program Files\BOINC\boinctray.exe [2018-01-19 69952]
"boincmgr"=C:\Program Files\BOINC\charityengine.exe [2018-01-19 8662848]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2000-01-01 9192960]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\jirka\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-06-20 1628840]
"Steam"=E:\Steam\steam.exe [2018-06-09 3201312]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-05-24 18364648]
"Chromium"=c:\users\jirka\appdata\local\chromium\application\chrome.exe [2017-02-15 829440]
"McAfeeSafeConnect"=C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe [2018-03-14 1112960]
"Discord"=C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe [2018-04-30 57816920]
"FACEIT"=C:\Users\jirka\AppData\Local\FACEITApp\update.exe [2018-06-24 2203608]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-07-15 767176]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-03-28 588704]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu kamarádova počítače
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu kamarádova počítače
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-07-10 09:29:42 ----D---- C:\rsit
2018-07-10 09:29:42 ----D---- C:\Program Files\trend micro
2018-07-10 08:51:03 ----HD---- C:\OneDriveTemp
2018-07-09 10:00:37 ----A---- C:\WINDOWS\system32\drivers\amdkmafd.sys
2018-07-09 10:00:26 ----A---- C:\WINDOWS\system32\drivers\amdkmpfd.sys
2018-07-09 10:00:13 ----D---- C:\Program Files\Common Files\ATI Technologies
2018-07-09 09:44:30 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-07-09 09:44:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-07-09 09:44:27 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-07-09 09:44:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-07-09 09:44:22 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-07-09 09:44:22 ----A---- C:\WINDOWS\system32\shell32.dll
2018-07-09 09:44:21 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-07-09 09:44:21 ----A---- C:\WINDOWS\system32\ClipUp.exe
2018-07-09 09:44:20 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-07-09 09:44:19 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-07-09 09:44:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-07-09 09:44:19 ----A---- C:\WINDOWS\system32\cdp.dll
2018-07-09 09:44:19 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-07-09 09:44:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-07-09 09:44:18 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-07-09 09:44:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-07-09 09:44:15 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2018-07-09 09:44:15 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-07-09 09:44:15 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\smartscreen.exe
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\usocore.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\ole32.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\FaceProcessor.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\mf.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\wsp_health.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\winmde.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-07-09 09:44:08 ----RSH---- C:\WINDOWS\fonts\StaticCache.dat
2018-07-09 09:44:08 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2018-07-09 09:44:08 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\mfds.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\DiagnosticLogCSP.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\winresume.exe
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\winload.exe
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\provengine.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\policymanager.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\evr.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\wow64.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\mfps.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\VideoHandlers.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\resutils.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\dsreg.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\clusapi.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\AcLayers.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\HelpPane.exe
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\provhandlers.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\FaceProcessorCore.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\DTUHandler.exe
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\perfnet.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\shdocvw.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\updatecsp.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\untfs.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\perfnet.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\DsmUserTask.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\drivers\cdrom.sys
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\autochk.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\autofmt.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\autoconv.exe
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\ubpm.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\DTUHandlerPS.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\DeviceSetupManagerAPI.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\credprovhost.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\autopilot.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-07-09 09:43:59 ----A---- C:\WINDOWS\system32\srms.dat
2018-07-06 18:55:53 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2018-07-06 18:55:53 ----A---- C:\WINDOWS\system32\drivers\farflt.sys
2018-07-06 18:55:52 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2018-07-06 09:20:12 ----D---- C:\AdwCleaner
2018-06-30 10:52:56 ----D---- C:\Program Files\Common Files\DESIGNER
2018-06-27 16:01:50 ----D---- C:\Program Files\CPUID
2018-06-27 15:34:15 ----A---- C:\WINDOWS\system32\drivers\MbamChameleon.sys
2018-06-27 15:34:06 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2018-06-27 15:34:00 ----A---- C:\WINDOWS\system32\drivers\mbae64.sys
2018-06-27 15:33:54 ----D---- C:\ProgramData\Malwarebytes
2018-06-27 15:33:54 ----D---- C:\Program Files\Malwarebytes
2018-06-27 10:04:01 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-06-27 09:24:49 ----A---- C:\WINDOWS\system32\drivers\aswElam.sys
2018-06-26 21:26:56 ----D---- C:\Users\jirka\AppData\Roaming\Sun
2018-06-26 21:26:49 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2018-06-26 21:26:35 ----D---- C:\ProgramData\Oracle
2018-06-26 21:26:34 ----D---- C:\Program Files (x86)\Java
2018-06-26 20:54:56 ----D---- C:\ProgramData\ASUS
2018-06-26 20:51:31 ----N---- C:\WINDOWS\system32\drivers\IOMap64.sys
2018-06-26 20:51:31 ----A---- C:\WINDOWS\SYSWOW64\drivers\AsIO.sys
2018-06-26 20:51:31 ----A---- C:\WINDOWS\SYSWOW64\AsIO.dll
2018-06-26 20:51:26 ----D---- C:\Program Files (x86)\ASUS
2018-06-23 21:46:47 ----D---- C:\Users\jirka\AppData\Roaming\FACEIT
2018-06-22 15:47:24 ----D---- C:\WINDOWS\SYSWOW64\directx
2018-06-17 13:39:54 ----D---- C:\ProgramData\Packages
2018-06-15 15:01:50 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2018-06-15 15:01:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-06-15 15:01:46 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-06-15 15:01:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-06-15 15:01:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-06-15 15:01:40 ----A---- C:\WINDOWS\system32\tquery.dll
2018-06-15 15:01:39 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-06-15 15:01:38 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-06-15 15:01:37 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2018-06-15 15:01:37 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-06-15 15:01:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-06-15 15:01:36 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-06-15 15:01:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2018-06-15 15:01:34 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2018-06-15 15:01:34 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-06-15 15:01:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-06-15 15:01:33 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-06-15 15:01:33 ----A---- C:\WINDOWS\system32\combase.dll
2018-06-15 15:01:32 ----A---- C:\WINDOWS\system32\OpcServices.dll
2018-06-15 15:01:32 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-06-15 15:01:31 ----A---- C:\WINDOWS\system32\wpnapps.dll
2018-06-15 15:01:31 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-06-15 15:01:31 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2018-06-15 15:01:31 ----A---- C:\WINDOWS\system32\comsvcs.dll
2018-06-15 15:01:30 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2018-06-15 15:01:30 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-06-15 15:01:30 ----A---- C:\WINDOWS\system32\CoreShell.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\wininet.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\uDWM.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-06-15 15:01:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2018-06-15 15:01:28 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-06-15 15:01:28 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\system32\d3d9.dll
2018-06-15 15:01:26 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2018-06-15 15:01:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-06-15 15:01:26 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2018-06-15 15:01:26 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2018-06-15 15:01:25 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-06-15 15:01:25 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\system32\rasapi32.dll
2018-06-15 15:01:23 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-06-15 15:01:23 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2018-06-15 15:01:23 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2018-06-15 15:01:23 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-06-15 15:01:22 ----A---- C:\WINDOWS\system32\msftedit.dll
2018-06-15 15:01:22 ----A---- C:\WINDOWS\system32\ISM.dll
2018-06-15 15:01:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-06-15 15:01:21 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\jscript.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\propsys.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-06-15 15:01:19 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-06-15 15:01:19 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-06-15 15:01:18 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\dui70.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\DolbyMATEnc.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\webservices.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\SHCore.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\esent.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\ci.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\wevtutil.exe
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\systemreset.exe
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\ReAgent.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\msdtctm.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\credprovs.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\LanguageOverlayUtil.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\DXP.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-06-15 15:01:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\SYSWOW64\LanguageOverlayUtil.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\skci.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\rasplap.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\FrameServer.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-06-15 15:01:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\SYSWOW64\kernel.appcore.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\wimgapi.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\reseteng.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\kernel.appcore.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\wimserv.exe
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\GenValObj.exe
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\mstsc.exe
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\FSClient.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\drivers\Ucx01000.sys
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\bcrypt.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\wevtutil.exe
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\rasdlg.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\easwrt.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\srms-apr.dat
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\Windows.Globalization.PhoneNumberFormatting.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\srms-apr.dat
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\sppcext.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\MDEServer.exe
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\SYSWOW64\msdt.exe
2018-06-15 15:01:06 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\msdt.exe
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\MSHEIF.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\tzres.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\tbauth.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\SIHClient.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\msi.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\MSHEIF.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\GamePanel.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\edpnotify.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\aadtb.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\detoured.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\coinst_18.10.dll
2018-06-13 19:57:40 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2018-06-13 19:57:40 ----A---- C:\WINDOWS\system32\OpenCL.dll
2018-06-13 12:40:35 ----D---- C:\Users\jirka\AppData\Roaming\Ubisoft
2018-06-13 12:40:23 ----D---- C:\ProgramData\Ubisoft
2018-06-12 15:49:01 ----D---- C:\Program Files (x86)\Ubisoft
======List of files/folders modified in the last 1 month======
2018-07-10 09:29:46 ----D---- C:\WINDOWS\Prefetch
2018-07-10 09:29:42 ----RD---- C:\Program Files
2018-07-10 09:29:29 ----D---- C:\ProgramData\BOINC
2018-07-10 09:23:53 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-07-10 09:20:29 ----D---- C:\WINDOWS\Temp
2018-07-10 08:53:40 ----D---- C:\WINDOWS\INF
2018-07-10 08:51:50 ----D---- C:\WINDOWS\system32\drivers
2018-07-10 08:51:05 ----D---- C:\WINDOWS\system32\sru
2018-07-10 08:50:42 ----D---- C:\WINDOWS\system32\Tasks
2018-07-09 23:56:54 ----D---- C:\Program Files\Opera
2018-07-09 22:29:07 ----D---- C:\Users\jirka\AppData\Roaming\TS3Client
2018-07-09 14:03:41 ----RD---- C:\WINDOWS\Microsoft.NET
2018-07-09 13:52:07 ----D---- C:\WINDOWS\AppReadiness
2018-07-09 13:51:54 ----D---- C:\WINDOWS\system32\SleepStudy
2018-07-09 13:18:28 ----RSD---- C:\WINDOWS\assembly
2018-07-09 12:00:02 ----D---- C:\WINDOWS\system32\LogFiles
2018-07-09 10:17:23 ----D---- C:\WINDOWS\Logs
2018-07-09 10:17:07 ----D---- C:\WINDOWS\system32\config
2018-07-09 10:08:33 ----D---- C:\WINDOWS\System32
2018-07-09 10:08:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-07-09 10:02:36 ----D---- C:\Windows
2018-07-09 10:02:35 ----D---- C:\WINDOWS\WinSxS
2018-07-09 10:02:31 ----D---- C:\WINDOWS\system32\DriverStore
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SysWOW64
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\zu-ZA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\yo-NG
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\xh-ZA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\wo-SN
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\wbem
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\tn-ZA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ti-ET
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\rw-RW
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\nso-ZA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\migration
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ig-NG
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\appraiser
2018-07-09 10:01:31 ----RSD---- C:\WINDOWS\Fonts
2018-07-09 10:01:31 ----D---- C:\WINDOWS\bcastdvr
2018-07-09 10:01:31 ----D---- C:\WINDOWS\apppatch
2018-07-09 10:01:30 ----D---- C:\WINDOWS\system32\Boot
2018-07-09 10:00:40 ----D---- C:\WINDOWS\system32\CatRoot
2018-07-09 10:00:37 ----D---- C:\Program Files\AMD
2018-07-09 10:00:13 ----D---- C:\Program Files\Common Files
2018-07-09 09:59:35 ----SHD---- C:\System Volume Information
2018-07-09 09:56:38 ----SHD---- C:\WINDOWS\Installer
2018-07-09 09:56:18 ----D---- C:\WINDOWS\CbsTemp
2018-07-09 09:56:17 ----HD---- C:\ProgramData
2018-07-09 09:55:57 ----D---- C:\AMD
2018-07-09 09:46:11 ----D---- C:\WINDOWS\system32\catroot2
2018-07-09 09:33:07 ----D---- C:\WINDOWS\LiveKernelReports
2018-07-08 23:57:48 ----D---- C:\Users\jirka\AppData\Roaming\obs-studio
2018-07-08 22:39:17 ----D---- C:\Program Files\Common Files\microsoft shared
2018-07-07 16:04:23 ----HD---- C:\Program Files\WindowsApps
2018-07-06 16:12:47 ----D---- C:\Users\jirka\AppData\Roaming\uTorrent
2018-07-06 09:21:00 ----D---- C:\ProgramData\BSD
2018-07-06 09:13:04 ----D---- C:\WINDOWS\system32\WDI
2018-07-05 19:24:46 ----RD---- C:\Program Files (x86)
2018-07-03 20:19:53 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-06-30 18:18:39 ----D---- C:\Users\jirka\AppData\Roaming\discord
2018-06-30 10:50:20 ----D---- C:\Program Files\Microsoft Office
2018-06-30 10:28:03 ----D---- C:\Program Files\TeamSpeak 3 Client
2018-06-27 15:42:10 ----D---- C:\Program Files (x86)\Common Files
2018-06-27 15:40:03 ----D---- C:\WINDOWS\Tasks
2018-06-27 10:04:01 ----HD---- C:\WINDOWS\ELAMBKUP
2018-06-26 22:10:59 ----A---- C:\WINDOWS\system32\lpcio.dll
2018-06-26 20:53:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2018-06-26 20:51:31 ----D---- C:\WINDOWS\SYSWOW64\drivers
2018-06-26 20:50:29 ----D---- C:\WINDOWS\Downloaded Installations
2018-06-24 10:12:36 ----D---- C:\Program Files (x86)\McAfee
2018-06-19 16:11:44 ----D---- C:\WINDOWS\debug
2018-06-17 13:38:09 ----D---- C:\WINDOWS\TextInput
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\setup
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\oobe
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\setup
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\oobe
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\en-US
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\Dism
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\cs-CZ
2018-06-17 13:38:08 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-06-17 13:38:08 ----D---- C:\WINDOWS\ShellExperiences
2018-06-17 13:38:08 ----D---- C:\Program Files\Windows Photo Viewer
2018-06-17 13:38:08 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\RapidFireServer.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\Rapidfire.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\GameManager32.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\RapidFireServer64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\Rapidfire64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\mantle64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\GameManager64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\clinfo.exe
2018-06-13 19:57:46 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2018-06-13 19:57:46 ----A---- C:\WINDOWS\system32\atisamu64.dll
2018-06-13 19:57:44 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2018-06-13 19:57:44 ----A---- C:\WINDOWS\system32\atimuixx.dll
2018-06-13 19:57:44 ----A---- C:\WINDOWS\system32\atimpc64.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\amfrt32.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atig6txx.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atieclxx.exe
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atieah64.exe
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atidxx64.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atidemgy.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\aticfx64.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\ati2erec.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\amfrt64.dll
2018-06-13 19:57:40 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2018-06-13 19:57:40 ----A---- C:\WINDOWS\system32\amdxc64.dll
2018-06-13 19:57:38 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2018-06-13 19:57:36 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\SYSWOW64\amdmcl32.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\system32\amdmcl64.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2018-06-13 19:57:30 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2018-06-13 19:57:30 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2018-06-13 19:57:30 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2018-06-13 19:57:30 ----A---- C:\WINDOWS\system32\amdave64.dll
2018-06-13 15:51:00 ----D---- C:\WINDOWS\system32\MRT
2018-06-13 15:49:04 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-06-13 15:49:00 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-06-12 20:08:34 ----D---- C:\Program Files (x86)\Google
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem17.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2018-06-13 101848]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-06-27 201328]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-06-27 346664]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-06-27 59592]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-06-27 85968]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-06-27 381584]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2017-04-14 15232]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-06-27 197160]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-06-27 229392]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-06-27 239680]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-06-27 111872]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-06-27 1027728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-06-27 463080]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\WINDOWS\system32\drivers\mbae64.sys [2018-05-24 152184]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-06-27 159640]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-06-27 211160]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-04-12 414208]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [2018-06-27 190696]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R3 aftap0901;@oem3.inf,%DeviceDescription%;AnchorFree TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\aftap0901.sys [2018-03-06 48624]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atikmdag.sys [2018-06-13 44683240]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atikmpag.sys [2018-06-13 553448]
R3 AtiHDAudioService;@oem8.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2017-11-21 111112]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2000-01-01 5542400]
R3 IOMap;IOMap; \??\C:\WINDOWS\system32\drivers\IOMap64.sys [2017-05-08 34064]
R3 MBAMFarflt;MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [2018-07-09 112872]
R3 MBAMProtection;MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [2018-07-09 44768]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2018-07-09 253664]
R3 MBAMWebProtection;MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [2018-07-10 103656]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
R3 rt640x64;@oem12.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-06-05 984032]
S0 amdkmafd;@oem18.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2018-06-13 58760]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-04-12 128416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2018-06-27 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-06-27 46976]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 GPUZ;GPUZ; \??\C:\Users\jirka\AppData\Local\Temp\GPUZ.sys []
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-04-12 73632]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 iaStorA;Intel(R) Chipset SATA/PCIe RST Premium Controller; C:\WINDOWS\System32\drivers\iaStorA.sys [2017-06-20 893416]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 MEIx64;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-07-27 206496]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\WINDOWS\System32\drivers\nvstusb.sys [2017-10-27 495664]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-10-27 50808]
S3 nvvhci;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-10-27 57976]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-06-15 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S3 SGXEPC;Software Guard Extensions Device Driver; C:\WINDOWS\System32\drivers\sgx_driver.sys [2016-05-18 52824]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-04-12 57752]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atiesrxx.exe [2018-06-13 482280]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2015-07-15 344064]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [2018-01-05 382424]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-06-27 322464]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_3335b36;Uživatelská služba platformy připojených zařízení_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-06-20 8765104]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-05-09 6541008]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-06-05 604824]
R2 OneSyncSvc_3335b36;Hostitel synchronizace_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-06-15 761440]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-06-27 7780400]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_3335b36;Data kontaktů_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-10 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_3335b36;Uživatelská služba pro GameDVR a vysílání her_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2018-06-26 6893704]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_3335b36;Služba pro podporu uživatelů Bluetooth_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_3335b36;DevicePicker_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_3335b36;Tok zařízení_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-04-12 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-06-26 777856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-05-23 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 McAfee Vpn Service;McAfee Vpn Service; C:\Program Files (x86)\McAfee Safe Connect\service\VpnService.exe [2018-03-06 314368]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [2018-03-27 405392]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_3335b36;Služba zasílání zpráv_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-16 194512]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-20 258736]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_3335b36;PrintWorkflow_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-06-08 976384]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S4 ssh-agent;OpenSSH Authentication Agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-03-10 495616]
-----------------EOF-----------------
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-07-10 09:29:42 ----D---- C:\rsit
2018-07-10 09:29:42 ----D---- C:\Program Files\trend micro
2018-07-10 08:51:03 ----HD---- C:\OneDriveTemp
2018-07-09 10:00:37 ----A---- C:\WINDOWS\system32\drivers\amdkmafd.sys
2018-07-09 10:00:26 ----A---- C:\WINDOWS\system32\drivers\amdkmpfd.sys
2018-07-09 10:00:13 ----D---- C:\Program Files\Common Files\ATI Technologies
2018-07-09 09:44:30 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-07-09 09:44:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-07-09 09:44:27 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-07-09 09:44:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-07-09 09:44:22 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-07-09 09:44:22 ----A---- C:\WINDOWS\system32\shell32.dll
2018-07-09 09:44:21 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-07-09 09:44:21 ----A---- C:\WINDOWS\system32\ClipUp.exe
2018-07-09 09:44:20 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-07-09 09:44:19 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-07-09 09:44:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-07-09 09:44:19 ----A---- C:\WINDOWS\system32\cdp.dll
2018-07-09 09:44:19 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-07-09 09:44:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-07-09 09:44:18 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2018-07-09 09:44:17 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-07-09 09:44:16 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-07-09 09:44:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-07-09 09:44:15 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2018-07-09 09:44:15 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-07-09 09:44:15 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\smartscreen.exe
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\mstscax.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-07-09 09:44:14 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-07-09 09:44:13 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\usocore.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\ole32.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\FaceProcessor.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-07-09 09:44:12 ----A---- C:\WINDOWS\system32\CPFilters.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\mf.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-07-09 09:44:11 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-07-09 09:44:10 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\wsp_health.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\winmde.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-07-09 09:44:09 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2018-07-09 09:44:08 ----RSH---- C:\WINDOWS\fonts\StaticCache.dat
2018-07-09 09:44:08 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2018-07-09 09:44:08 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\mfds.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\DiagnosticLogCSP.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-07-09 09:44:08 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\winresume.exe
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\winload.exe
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\provengine.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\policymanager.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\evr.dll
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2018-07-09 09:44:07 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\wow64.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\mfps.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-07-09 09:44:06 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\VideoHandlers.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\resutils.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\dsreg.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\clusapi.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\system32\AcLayers.dll
2018-07-09 09:44:05 ----A---- C:\WINDOWS\HelpPane.exe
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\provhandlers.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2018-07-09 09:44:04 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\FaceProcessorCore.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\DTUHandler.exe
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-07-09 09:44:03 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\perfnet.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\shdocvw.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-07-09 09:44:02 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\updatecsp.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\untfs.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\perfnet.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\DsmUserTask.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\drivers\cdrom.sys
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\autochk.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\autofmt.exe
2018-07-09 09:44:01 ----A---- C:\WINDOWS\system32\autoconv.exe
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\ubpm.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\DTUHandlerPS.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\DeviceSetupManagerAPI.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\credprovhost.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\autopilot.dll
2018-07-09 09:44:00 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-07-09 09:43:59 ----A---- C:\WINDOWS\system32\srms.dat
2018-07-06 18:55:53 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2018-07-06 18:55:53 ----A---- C:\WINDOWS\system32\drivers\farflt.sys
2018-07-06 18:55:52 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2018-07-06 09:20:12 ----D---- C:\AdwCleaner
2018-06-30 10:52:56 ----D---- C:\Program Files\Common Files\DESIGNER
2018-06-27 16:01:50 ----D---- C:\Program Files\CPUID
2018-06-27 15:34:15 ----A---- C:\WINDOWS\system32\drivers\MbamChameleon.sys
2018-06-27 15:34:06 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2018-06-27 15:34:00 ----A---- C:\WINDOWS\system32\drivers\mbae64.sys
2018-06-27 15:33:54 ----D---- C:\ProgramData\Malwarebytes
2018-06-27 15:33:54 ----D---- C:\Program Files\Malwarebytes
2018-06-27 10:04:01 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-06-27 09:24:49 ----A---- C:\WINDOWS\system32\drivers\aswElam.sys
2018-06-26 21:26:56 ----D---- C:\Users\jirka\AppData\Roaming\Sun
2018-06-26 21:26:49 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2018-06-26 21:26:35 ----D---- C:\ProgramData\Oracle
2018-06-26 21:26:34 ----D---- C:\Program Files (x86)\Java
2018-06-26 20:54:56 ----D---- C:\ProgramData\ASUS
2018-06-26 20:51:31 ----N---- C:\WINDOWS\system32\drivers\IOMap64.sys
2018-06-26 20:51:31 ----A---- C:\WINDOWS\SYSWOW64\drivers\AsIO.sys
2018-06-26 20:51:31 ----A---- C:\WINDOWS\SYSWOW64\AsIO.dll
2018-06-26 20:51:26 ----D---- C:\Program Files (x86)\ASUS
2018-06-23 21:46:47 ----D---- C:\Users\jirka\AppData\Roaming\FACEIT
2018-06-22 15:47:24 ----D---- C:\WINDOWS\SYSWOW64\directx
2018-06-17 13:39:54 ----D---- C:\ProgramData\Packages
2018-06-15 15:01:50 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2018-06-15 15:01:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-06-15 15:01:46 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-06-15 15:01:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-06-15 15:01:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-06-15 15:01:40 ----A---- C:\WINDOWS\system32\tquery.dll
2018-06-15 15:01:39 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-06-15 15:01:38 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2018-06-15 15:01:37 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2018-06-15 15:01:37 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-06-15 15:01:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-06-15 15:01:36 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-06-15 15:01:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2018-06-15 15:01:34 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2018-06-15 15:01:34 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-06-15 15:01:34 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-06-15 15:01:33 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-06-15 15:01:33 ----A---- C:\WINDOWS\system32\combase.dll
2018-06-15 15:01:32 ----A---- C:\WINDOWS\system32\OpcServices.dll
2018-06-15 15:01:32 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-06-15 15:01:31 ----A---- C:\WINDOWS\system32\wpnapps.dll
2018-06-15 15:01:31 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-06-15 15:01:31 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2018-06-15 15:01:31 ----A---- C:\WINDOWS\system32\comsvcs.dll
2018-06-15 15:01:30 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2018-06-15 15:01:30 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-06-15 15:01:30 ----A---- C:\WINDOWS\system32\CoreShell.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\wininet.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\uDWM.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-06-15 15:01:29 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-06-15 15:01:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2018-06-15 15:01:28 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2018-06-15 15:01:28 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-06-15 15:01:27 ----A---- C:\WINDOWS\system32\d3d9.dll
2018-06-15 15:01:26 ----A---- C:\WINDOWS\SYSWOW64\MSAudDecMFT.dll
2018-06-15 15:01:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-06-15 15:01:26 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2018-06-15 15:01:26 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2018-06-15 15:01:25 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-06-15 15:01:25 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-06-15 15:01:24 ----A---- C:\WINDOWS\system32\rasapi32.dll
2018-06-15 15:01:23 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-06-15 15:01:23 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2018-06-15 15:01:23 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2018-06-15 15:01:23 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-06-15 15:01:22 ----A---- C:\WINDOWS\system32\msftedit.dll
2018-06-15 15:01:22 ----A---- C:\WINDOWS\system32\ISM.dll
2018-06-15 15:01:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-06-15 15:01:21 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\jscript.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-06-15 15:01:21 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\rpcss.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\propsys.dll
2018-06-15 15:01:20 ----A---- C:\WINDOWS\system32\gdi32full.dll
2018-06-15 15:01:19 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-06-15 15:01:19 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-06-15 15:01:18 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\dui70.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\DolbyMATEnc.dll
2018-06-15 15:01:18 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\WinTypes.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\webservices.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\SHCore.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\esent.dll
2018-06-15 15:01:17 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\ci.dll
2018-06-15 15:01:16 ----A---- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\wevtutil.exe
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\systemreset.exe
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\ReAgent.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\msdtctm.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\credprovs.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-06-15 15:01:15 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\LanguageOverlayUtil.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\DXP.dll
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2018-06-15 15:01:14 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-06-15 15:01:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\SYSWOW64\LanguageOverlayUtil.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\skci.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\rasplap.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\FrameServer.dll
2018-06-15 15:01:13 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-06-15 15:01:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\SYSWOW64\kernel.appcore.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\wimgapi.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\reseteng.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\kernel.appcore.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-06-15 15:01:12 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\wimserv.exe
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\GenValObj.exe
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2018-06-15 15:01:11 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\mstsc.exe
2018-06-15 15:01:10 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\FSClient.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\drivers\Ucx01000.sys
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2018-06-15 15:01:09 ----A---- C:\WINDOWS\system32\bcrypt.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\wevtutil.exe
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2018-06-15 15:01:08 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\rasdlg.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\easwrt.dll
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-06-15 15:01:08 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\srms-apr.dat
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\Windows.Globalization.PhoneNumberFormatting.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\srms-apr.dat
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\sppcext.dll
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\MDEServer.exe
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-06-15 15:01:07 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\SYSWOW64\msdt.exe
2018-06-15 15:01:06 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\msdt.exe
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2018-06-15 15:01:06 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\MSHEIF.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\tzres.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\tbauth.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\SIHClient.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\msi.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\MSHEIF.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\GamePanel.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\edpnotify.exe
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2018-06-15 15:01:05 ----A---- C:\WINDOWS\system32\aadtb.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\detoured.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\coinst_18.10.dll
2018-06-13 19:57:40 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2018-06-13 19:57:40 ----A---- C:\WINDOWS\system32\OpenCL.dll
2018-06-13 12:40:35 ----D---- C:\Users\jirka\AppData\Roaming\Ubisoft
2018-06-13 12:40:23 ----D---- C:\ProgramData\Ubisoft
2018-06-12 15:49:01 ----D---- C:\Program Files (x86)\Ubisoft
======List of files/folders modified in the last 1 month======
2018-07-10 09:29:46 ----D---- C:\WINDOWS\Prefetch
2018-07-10 09:29:42 ----RD---- C:\Program Files
2018-07-10 09:29:29 ----D---- C:\ProgramData\BOINC
2018-07-10 09:23:53 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-07-10 09:20:29 ----D---- C:\WINDOWS\Temp
2018-07-10 08:53:40 ----D---- C:\WINDOWS\INF
2018-07-10 08:51:50 ----D---- C:\WINDOWS\system32\drivers
2018-07-10 08:51:05 ----D---- C:\WINDOWS\system32\sru
2018-07-10 08:50:42 ----D---- C:\WINDOWS\system32\Tasks
2018-07-09 23:56:54 ----D---- C:\Program Files\Opera
2018-07-09 22:29:07 ----D---- C:\Users\jirka\AppData\Roaming\TS3Client
2018-07-09 14:03:41 ----RD---- C:\WINDOWS\Microsoft.NET
2018-07-09 13:52:07 ----D---- C:\WINDOWS\AppReadiness
2018-07-09 13:51:54 ----D---- C:\WINDOWS\system32\SleepStudy
2018-07-09 13:18:28 ----RSD---- C:\WINDOWS\assembly
2018-07-09 12:00:02 ----D---- C:\WINDOWS\system32\LogFiles
2018-07-09 10:17:23 ----D---- C:\WINDOWS\Logs
2018-07-09 10:17:07 ----D---- C:\WINDOWS\system32\config
2018-07-09 10:08:33 ----D---- C:\WINDOWS\System32
2018-07-09 10:08:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-07-09 10:02:36 ----D---- C:\Windows
2018-07-09 10:02:35 ----D---- C:\WINDOWS\WinSxS
2018-07-09 10:02:31 ----D---- C:\WINDOWS\system32\DriverStore
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2018-07-09 10:01:33 ----D---- C:\WINDOWS\SysWOW64
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\zu-ZA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\yo-NG
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\xh-ZA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\wo-SN
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\wbem
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\tn-ZA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ti-ET
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\rw-RW
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\nso-ZA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\migration
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ig-NG
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\chr-CHER-US
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2018-07-09 10:01:32 ----D---- C:\WINDOWS\system32\appraiser
2018-07-09 10:01:31 ----RSD---- C:\WINDOWS\Fonts
2018-07-09 10:01:31 ----D---- C:\WINDOWS\bcastdvr
2018-07-09 10:01:31 ----D---- C:\WINDOWS\apppatch
2018-07-09 10:01:30 ----D---- C:\WINDOWS\system32\Boot
2018-07-09 10:00:40 ----D---- C:\WINDOWS\system32\CatRoot
2018-07-09 10:00:37 ----D---- C:\Program Files\AMD
2018-07-09 10:00:13 ----D---- C:\Program Files\Common Files
2018-07-09 09:59:35 ----SHD---- C:\System Volume Information
2018-07-09 09:56:38 ----SHD---- C:\WINDOWS\Installer
2018-07-09 09:56:18 ----D---- C:\WINDOWS\CbsTemp
2018-07-09 09:56:17 ----HD---- C:\ProgramData
2018-07-09 09:55:57 ----D---- C:\AMD
2018-07-09 09:46:11 ----D---- C:\WINDOWS\system32\catroot2
2018-07-09 09:33:07 ----D---- C:\WINDOWS\LiveKernelReports
2018-07-08 23:57:48 ----D---- C:\Users\jirka\AppData\Roaming\obs-studio
2018-07-08 22:39:17 ----D---- C:\Program Files\Common Files\microsoft shared
2018-07-07 16:04:23 ----HD---- C:\Program Files\WindowsApps
2018-07-06 16:12:47 ----D---- C:\Users\jirka\AppData\Roaming\uTorrent
2018-07-06 09:21:00 ----D---- C:\ProgramData\BSD
2018-07-06 09:13:04 ----D---- C:\WINDOWS\system32\WDI
2018-07-05 19:24:46 ----RD---- C:\Program Files (x86)
2018-07-03 20:19:53 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-06-30 18:18:39 ----D---- C:\Users\jirka\AppData\Roaming\discord
2018-06-30 10:50:20 ----D---- C:\Program Files\Microsoft Office
2018-06-30 10:28:03 ----D---- C:\Program Files\TeamSpeak 3 Client
2018-06-27 15:42:10 ----D---- C:\Program Files (x86)\Common Files
2018-06-27 15:40:03 ----D---- C:\WINDOWS\Tasks
2018-06-27 10:04:01 ----HD---- C:\WINDOWS\ELAMBKUP
2018-06-26 22:10:59 ----A---- C:\WINDOWS\system32\lpcio.dll
2018-06-26 20:53:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2018-06-26 20:51:31 ----D---- C:\WINDOWS\SYSWOW64\drivers
2018-06-26 20:50:29 ----D---- C:\WINDOWS\Downloaded Installations
2018-06-24 10:12:36 ----D---- C:\Program Files (x86)\McAfee
2018-06-19 16:11:44 ----D---- C:\WINDOWS\debug
2018-06-17 13:38:09 ----D---- C:\WINDOWS\TextInput
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\setup
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\oobe
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-06-17 13:38:09 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\setup
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\oobe
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\en-US
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\Dism
2018-06-17 13:38:09 ----D---- C:\WINDOWS\system32\cs-CZ
2018-06-17 13:38:08 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2018-06-17 13:38:08 ----D---- C:\WINDOWS\ShellExperiences
2018-06-17 13:38:08 ----D---- C:\Program Files\Windows Photo Viewer
2018-06-17 13:38:08 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\RapidFireServer.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\Rapidfire.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\GameManager32.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\RapidFireServer64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\Rapidfire64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\mantle64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\GameManager64.dll
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2018-06-13 19:57:50 ----A---- C:\WINDOWS\system32\clinfo.exe
2018-06-13 19:57:46 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2018-06-13 19:57:46 ----A---- C:\WINDOWS\system32\atisamu64.dll
2018-06-13 19:57:44 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2018-06-13 19:57:44 ----A---- C:\WINDOWS\system32\atimuixx.dll
2018-06-13 19:57:44 ----A---- C:\WINDOWS\system32\atimpc64.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\SYSWOW64\amfrt32.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atig6txx.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atieclxx.exe
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atieah64.exe
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atidxx64.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atidemgy.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\aticfx64.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\ati2erec.dll
2018-06-13 19:57:42 ----A---- C:\WINDOWS\system32\amfrt64.dll
2018-06-13 19:57:40 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2018-06-13 19:57:40 ----A---- C:\WINDOWS\system32\amdxc64.dll
2018-06-13 19:57:38 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2018-06-13 19:57:36 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\SYSWOW64\amdmcl32.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\system32\amdmcl64.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2018-06-13 19:57:32 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2018-06-13 19:57:30 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2018-06-13 19:57:30 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2018-06-13 19:57:30 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2018-06-13 19:57:30 ----A---- C:\WINDOWS\system32\amdave64.dll
2018-06-13 15:51:00 ----D---- C:\WINDOWS\system32\MRT
2018-06-13 15:49:04 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-06-13 15:49:00 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-06-12 20:08:34 ----D---- C:\Program Files (x86)\Google
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem17.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2018-06-13 101848]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-06-27 201328]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-06-27 346664]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-06-27 59592]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-06-27 85968]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-06-27 381584]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-04-12 58272]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-04-12 63896]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2017-04-14 15232]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-06-27 197160]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-06-27 229392]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-06-27 239680]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-06-27 111872]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-06-27 1027728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-06-27 463080]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\WINDOWS\system32\drivers\mbae64.sys [2018-05-24 152184]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-04-12 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-04-12 8192]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-06-27 159640]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-06-27 211160]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-04-12 414208]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [2018-06-27 190696]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2018-04-12 43520]
R3 aftap0901;@oem3.inf,%DeviceDescription%;AnchorFree TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\aftap0901.sys [2018-03-06 48624]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atikmdag.sys [2018-06-13 44683240]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atikmpag.sys [2018-06-13 553448]
R3 AtiHDAudioService;@oem8.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2017-11-21 111112]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2000-01-01 5542400]
R3 IOMap;IOMap; \??\C:\WINDOWS\system32\drivers\IOMap64.sys [2017-05-08 34064]
R3 MBAMFarflt;MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [2018-07-09 112872]
R3 MBAMProtection;MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [2018-07-09 44768]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2018-07-09 253664]
R3 MBAMWebProtection;MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [2018-07-10 103656]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
R3 rt640x64;@oem12.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-06-05 984032]
S0 amdkmafd;@oem18.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2018-06-13 58760]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-04-12 124312]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-04-12 128408]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-04-12 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-04-12 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2018-04-12 128416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2018-06-27 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-06-27 46976]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2018-04-12 92056]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-04-12 39936]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-04-12 123392]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-04-12 20992]
S3 GPUZ;GPUZ; \??\C:\Users\jirka\AppData\Local\Temp\GPUZ.sys []
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-04-12 50592]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-04-12 73632]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-04-12 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-04-12 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 iaStorA;Intel(R) Chipset SATA/PCIe RST Premium Controller; C:\WINDOWS\System32\drivers\iaStorA.sys [2017-06-20 893416]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-04-12 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 MEIx64;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-07-27 206496]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-04-12 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-04-12 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\WINDOWS\System32\drivers\nvstusb.sys [2017-10-27 495664]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-10-27 50808]
S3 nvvhci;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-10-27 57976]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2018-06-15 945568]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-04-12 33176]
S3 SGXEPC;Software Guard Extensions Device Driver; C:\WINDOWS\System32\drivers\sgx_driver.sys [2016-05-18 52824]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-04-12 57752]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atiesrxx.exe [2018-06-13 482280]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2015-07-15 344064]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [2018-01-05 382424]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-06-27 322464]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 CDPUserSvc_3335b36;Uživatelská služba platformy připojených zařízení_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-06-20 8765104]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-05-09 6541008]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-06-05 604824]
R2 OneSyncSvc_3335b36;Hostitel synchronizace_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-06-15 761440]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2018-04-12 163336]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-06-27 7780400]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 PimIndexMaintenanceSvc_3335b36;Data kontaktů_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-10 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BcastDVRUserService_3335b36;Uživatelská služba pro GameDVR a vysílání her_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2018-06-26 6893704]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BluetoothUserService_3335b36;Služba pro podporu uživatelů Bluetooth_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicePickerUserSvc_3335b36;DevicePicker_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevicesFlowUserSvc_3335b36;Tok zařízení_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-04-12 90624]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-06-26 777856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-05-23 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 McAfee Vpn Service;McAfee Vpn Service; C:\Program Files (x86)\McAfee Safe Connect\service\VpnService.exe [2018-03-06 314368]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [2018-03-27 405392]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MessagingService_3335b36;Služba zasílání zpráv_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-16 194512]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-20 258736]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PrintWorkflowUserSvc_3335b36;PrintWorkflow_3335b36; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-04-12 1273344]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2018-04-12 51288]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2018-06-08 976384]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-04-12 51288]
S4 ssh-agent;OpenSSH Authentication Agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-03-10 495616]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu kamarádova počítače
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu kamarádova počítače
Přikládám log z adwcleaner
# -------------------------------
# Malwarebytes AdwCleaner 7.2.1.0
# -------------------------------
# Build: 06-26-2018
# Database: 2018-07-04.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-10-2018
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 3
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\BSD\DriverHiveEngine
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
Not Deleted NewTab
***** [ Chromium URLs ] *****
Not Deleted https://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Wto3qNq69Y7vwikCu3TDHbUK8MzrkVZTHWeymEBlRR92yIGjHCjTct1naFVKhPU9WoDC6ctDK573nWFp7pyueNLu0SU963rrrHNrojVF26WukLkG_wfA7gyJyHSglTks0EfmCsaH0PMNSdraRqdnuAvlTC48A,,
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
Not Deleted suggestqueries.google.com
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3183 octets] - [06/07/2018 09:20:41]
AdwCleaner[C00].txt - [2937 octets] - [06/07/2018 09:21:02]
AdwCleaner[S01].txt - [1696 octets] - [10/07/2018 10:59:58]
AdwCleaner[S02].txt - [1757 octets] - [10/07/2018 11:38:40]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 7.2.1.0
# -------------------------------
# Build: 06-26-2018
# Database: 2018-07-04.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-10-2018
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 3
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\BSD\DriverHiveEngine
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
Not Deleted NewTab
***** [ Chromium URLs ] *****
Not Deleted https://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Wto3qNq69Y7vwikCu3TDHbUK8MzrkVZTHWeymEBlRR92yIGjHCjTct1naFVKhPU9WoDC6ctDK573nWFp7pyueNLu0SU963rrrHNrojVF26WukLkG_wfA7gyJyHSglTks0EfmCsaH0PMNSdraRqdnuAvlTC48A,,
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
Not Deleted suggestqueries.google.com
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3183 octets] - [06/07/2018 09:20:41]
AdwCleaner[C00].txt - [2937 octets] - [06/07/2018 09:21:02]
AdwCleaner[S01].txt - [1696 octets] - [10/07/2018 10:59:58]
AdwCleaner[S02].txt - [1757 octets] - [10/07/2018 11:38:40]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu kamarádova počítače
Teď dejte log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=152707 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu kamarádova počítače
Přkládám LOG
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.06.2018
Ran by jirka (administrator) on JIRKA (13-07-2018 12:11:28)
Running from C:\Users\jirka\Downloads
Loaded Profiles: jirka (Available Profiles: jirka)
Platform: Windows 10 Home Version 1803 17134.165 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AMD) C:\Windows\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atieclxx.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Charity Engine) C:\Program Files\BOINC\boinctray.exe
(Charity Engine) C:\Program Files\BOINC\charityengine.exe
(Charity Engine) C:\Program Files\BOINC\boinc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(Valve Corporation) E:\Steam\Steam.exe
(McAfee Inc.) C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
(Space Sciences Laboratory) C:\ProgramData\BOINC\projects\work.charityengine.com\wrapper_26014_windows_intelx86.exe
(Node.js) C:\ProgramData\BOINC\slots\0\ce11.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Discord Inc.) C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Discord Inc.) C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
(Discord Inc.) C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
(Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.84.344.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Discord Inc.) C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15911.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-06-27] (AVAST Software)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69952 2018-01-19] (Charity Engine)
HKLM\...\Run: [boincmgr] => C:\Program Files\BOINC\charityengine.exe [8662848 2018-01-19] (Charity Engine)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9192960 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [Steam] => E:\Steam\steam.exe [3201312 2018-06-09] (Valve Corporation)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [Chromium] => c:\users\jirka\appdata\local\chromium\application\chrome.exe [829440 2017-02-15] (The Chromium Authors)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [McAfeeSafeConnect] => C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe [1112960 2018-03-14] (McAfee Inc.)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [Discord] => C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [FACEIT] => C:\Users\jirka\AppData\Local\FACEITApp\update.exe [2203608 2018-06-24] ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{49998c39-52e0-4c87-94d7-785df697f9ad}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{dfb4c46b-8dca-44af-8f89-44fc112c3f00}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Internet Explorer:
==================
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1709972634-1039721891-2127155391-1003 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1709972634-1039721891-2127155391-1003 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-04-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-06-26] (Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-06-26] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
FireFox:
========
FF DefaultProfile: o0enmu2b.default
FF ProfilePath: C:\Users\jirka\AppData\Roaming\Mozilla\Firefox\Profiles\o0enmu2b.default [2018-07-13]
FF Homepage: Mozilla\Firefox\Profiles\o0enmu2b.default -> hxxps://www.google.com/?bcutc=sp-006
FF NewTab: Mozilla\Firefox\Profiles\o0enmu2b.default -> about:newtab
FF Extension: (Avast Online Security) - C:\Users\jirka\AppData\Roaming\Mozilla\Firefox\Profiles\o0enmu2b.default\Extensions\wrc@avast.com.xpi [2018-06-27]
FF SearchPlugin: C:\Users\jirka\AppData\Roaming\Mozilla\Firefox\Profiles\o0enmu2b.default\searchplugins\google-avast.xml [2018-04-04]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-05-15]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-06-30] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-06-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-06-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-03-02] (Microsoft Corporation)
Chrome:
=======
CHR HomePage: Default -> hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Wto3qNq69Y7vwikCu3TDHbUK8MzrkVZTHWeymEBlRR92yIGjHCjTct1naFVKhPU9WoDC6ctDK573nWFp7pyueNLu0SU963rrrHNrojVF26WukLkG_wfA7gyJyHSglTks0EfmCsaH0PMNSdraRqdnuAvlTC48A,,
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default [2018-07-09]
CHR Extension: (Prezentace) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-04-03]
CHR Extension: (Dokumenty) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-03]
CHR Extension: (Disk Google) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-04-03]
CHR Extension: (YouTube) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-03]
CHR Extension: (Tampermonkey) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-06-02]
CHR Extension: (Tabulky) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-04-03]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-05-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-04-04]
CHR Extension: (AdBlock) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-05-25]
CHR Extension: (Avast Online Security) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-04-20]
CHR Extension: (ScriptMonkey) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lblbnlfhhblmfconjalikamamlgoobbe [2018-06-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-05-05]
CHR Extension: (Gmail) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-09]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR Extension: (BetterTTV) - C:\Users\jirka\AppData\Roaming\Opera Software\Opera Stable\Extensions\deofbbdfofnmppcjbhjibgodpcdchjii [2018-07-05]
OPR Extension: (Adblocker pro Youtube™) - C:\Users\jirka\AppData\Roaming\Opera Software\Opera Stable\Extensions\epeomjakeffkfofnidikcpbacmfliolc [2018-04-03]
OPR Extension: (Adblock Plus) - C:\Users\jirka\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2018-06-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atiesrxx.exe [482280 2018-06-13] (AMD)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-07-15] (Advanced Micro Devices, Inc.) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-01-05] (ASUSTeK Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-06-27] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-06-27] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6893704 2018-06-26] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8765104 2018-06-20] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2018-06-26] (EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604824 2018-06-05] (McAfee, Inc.)
S3 McAfee Vpn Service; C:\Program Files (x86)\McAfee Safe Connect\service\VpnService.exe [314368 2018-03-06] (AnchorFree Inc.) [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [405392 2018-03-27] (McAfee, Inc.)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17613.18038-0\NisSrv.exe [4681072 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17613.18038-0\MsMpEng.exe [104680 2018-04-11] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-03-06] (The OpenVPN Project)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [58760 2018-06-13] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atikmdag.sys [44683240 2018-06-13] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atikmpag.sys [553448 2018-06-13] (Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [101848 2018-06-13] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-14] ()
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [197160 2018-06-27] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [229392 2018-06-27] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201328 2018-06-27] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346664 2018-06-27] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59592 2018-06-27] (AVAST Software)
S3 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-06-27] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239680 2018-06-27] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-06-27] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [159640 2018-06-27] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111872 2018-06-27] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [85968 2018-06-27] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027728 2018-06-27] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [463080 2018-06-27] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [211160 2018-06-27] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381584 2018-06-27] (AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [111112 2017-11-21] (Advanced Micro Devices)
R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc.)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-07-12] (Malwarebytes)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50808 2017-10-27] (NVIDIA Corporation)
S3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-10-27] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [984032 2017-06-05] (Realtek )
S3 SGXEPC; C:\WINDOWS\System32\drivers\sgx_driver.sys [52824 2016-05-18] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [311840 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60448 2018-04-11] (Microsoft Corporation)
S3 GPUZ; \??\C:\Users\jirka\AppData\Local\Temp\GPUZ.sys [X] <==== ATTENTION
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.06.2018
Ran by jirka (administrator) on JIRKA (13-07-2018 12:11:28)
Running from C:\Users\jirka\Downloads
Loaded Profiles: jirka (Available Profiles: jirka)
Platform: Windows 10 Home Version 1803 17134.165 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AMD) C:\Windows\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atieclxx.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Charity Engine) C:\Program Files\BOINC\boinctray.exe
(Charity Engine) C:\Program Files\BOINC\charityengine.exe
(Charity Engine) C:\Program Files\BOINC\boinc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(Valve Corporation) E:\Steam\Steam.exe
(McAfee Inc.) C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
(Space Sciences Laboratory) C:\ProgramData\BOINC\projects\work.charityengine.com\wrapper_26014_windows_intelx86.exe
(Node.js) C:\ProgramData\BOINC\slots\0\ce11.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Discord Inc.) C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Discord Inc.) C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
(Discord Inc.) C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
(Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.84.344.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Discord Inc.) C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.51\opera.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15911.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-06-27] (AVAST Software)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69952 2018-01-19] (Charity Engine)
HKLM\...\Run: [boincmgr] => C:\Program Files\BOINC\charityengine.exe [8662848 2018-01-19] (Charity Engine)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9192960 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [Steam] => E:\Steam\steam.exe [3201312 2018-06-09] (Valve Corporation)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [Chromium] => c:\users\jirka\appdata\local\chromium\application\chrome.exe [829440 2017-02-15] (The Chromium Authors)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [McAfeeSafeConnect] => C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe [1112960 2018-03-14] (McAfee Inc.)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [Discord] => C:\Users\jirka\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\...\Run: [FACEIT] => C:\Users\jirka\AppData\Local\FACEITApp\update.exe [2203608 2018-06-24] ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{49998c39-52e0-4c87-94d7-785df697f9ad}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{dfb4c46b-8dca-44af-8f89-44fc112c3f00}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Internet Explorer:
==================
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKU\S-1-5-21-1709972634-1039721891-2127155391-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1709972634-1039721891-2127155391-1003 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1709972634-1039721891-2127155391-1003 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-04-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-06-26] (Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-06-26] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-06-30] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
FireFox:
========
FF DefaultProfile: o0enmu2b.default
FF ProfilePath: C:\Users\jirka\AppData\Roaming\Mozilla\Firefox\Profiles\o0enmu2b.default [2018-07-13]
FF Homepage: Mozilla\Firefox\Profiles\o0enmu2b.default -> hxxps://www.google.com/?bcutc=sp-006
FF NewTab: Mozilla\Firefox\Profiles\o0enmu2b.default -> about:newtab
FF Extension: (Avast Online Security) - C:\Users\jirka\AppData\Roaming\Mozilla\Firefox\Profiles\o0enmu2b.default\Extensions\wrc@avast.com.xpi [2018-06-27]
FF SearchPlugin: C:\Users\jirka\AppData\Roaming\Mozilla\Firefox\Profiles\o0enmu2b.default\searchplugins\google-avast.xml [2018-04-04]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-05-15]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-06-30] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-06-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-06-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-03-02] (Microsoft Corporation)
Chrome:
=======
CHR HomePage: Default -> hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Wto3qNq69Y7vwikCu3TDHbUK8MzrkVZTHWeymEBlRR92yIGjHCjTct1naFVKhPU9WoDC6ctDK573nWFp7pyueNLu0SU963rrrHNrojVF26WukLkG_wfA7gyJyHSglTks0EfmCsaH0PMNSdraRqdnuAvlTC48A,,
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default [2018-07-09]
CHR Extension: (Prezentace) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-04-03]
CHR Extension: (Dokumenty) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-03]
CHR Extension: (Disk Google) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-04-03]
CHR Extension: (YouTube) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-03]
CHR Extension: (Tampermonkey) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-06-02]
CHR Extension: (Tabulky) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-04-03]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-05-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-04-04]
CHR Extension: (AdBlock) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-05-25]
CHR Extension: (Avast Online Security) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-04-20]
CHR Extension: (ScriptMonkey) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lblbnlfhhblmfconjalikamamlgoobbe [2018-06-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-05-05]
CHR Extension: (Gmail) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-09]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR Extension: (BetterTTV) - C:\Users\jirka\AppData\Roaming\Opera Software\Opera Stable\Extensions\deofbbdfofnmppcjbhjibgodpcdchjii [2018-07-05]
OPR Extension: (Adblocker pro Youtube™) - C:\Users\jirka\AppData\Roaming\Opera Software\Opera Stable\Extensions\epeomjakeffkfofnidikcpbacmfliolc [2018-04-03]
OPR Extension: (Adblock Plus) - C:\Users\jirka\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2018-06-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atiesrxx.exe [482280 2018-06-13] (AMD)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-07-15] (Advanced Micro Devices, Inc.) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-01-05] (ASUSTeK Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-06-27] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-06-27] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6893704 2018-06-26] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8765104 2018-06-20] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2018-06-26] (EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604824 2018-06-05] (McAfee, Inc.)
S3 McAfee Vpn Service; C:\Program Files (x86)\McAfee Safe Connect\service\VpnService.exe [314368 2018-03-06] (AnchorFree Inc.) [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [405392 2018-03-27] (McAfee, Inc.)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17613.18038-0\NisSrv.exe [4681072 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17613.18038-0\MsMpEng.exe [104680 2018-04-11] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-03-06] (The OpenVPN Project)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [58760 2018-06-13] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atikmdag.sys [44683240 2018-06-13] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0329759.inf_amd64_379f06e83dab0e48\B329716\atikmpag.sys [553448 2018-06-13] (Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [101848 2018-06-13] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-14] ()
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [197160 2018-06-27] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [229392 2018-06-27] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201328 2018-06-27] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346664 2018-06-27] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59592 2018-06-27] (AVAST Software)
S3 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-06-27] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239680 2018-06-27] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-06-27] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [159640 2018-06-27] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111872 2018-06-27] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [85968 2018-06-27] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027728 2018-06-27] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [463080 2018-06-27] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [211160 2018-06-27] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381584 2018-06-27] (AVAST Software)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [111112 2017-11-21] (Advanced Micro Devices)
R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc.)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253664 2018-07-12] (Malwarebytes)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50808 2017-10-27] (NVIDIA Corporation)
S3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-10-27] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [984032 2017-06-05] (Realtek )
S3 SGXEPC; C:\WINDOWS\System32\drivers\sgx_driver.sys [52824 2016-05-18] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46072 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [311840 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60448 2018-04-11] (Microsoft Corporation)
S3 GPUZ; \??\C:\Users\jirka\AppData\Local\Temp\GPUZ.sys [X] <==== ATTENTION
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu kamarádova počítače
Log není kompletní.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?